Stefan Hajnoczi

2 exploits Active since Jul 2019
CVE-2019-13164 WRITEUP HIGH WRITEUP
QEMU 3.1 and 4.0.0 - ACL Bypass via Oversized Network Interface Name
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name (obtained from bridge.conf or a --br=bridge option) is limited to the IFNAMSIZ size, which can lead to an ACL bypass.
CVSS 7.8
CVE-2020-35517 WRITEUP HIGH WRITEUP
qemu 5.0.0-5.2.50 - Privilege Escalation via virtio-fs Shared File System Device File Creation
A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.
CVSS 8.2