qemu

419 tracked vulnerabilities.

CVE-2023-0664 HIGH
QEMU Guest Agent - Privilege Escalation
Mar 29, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-1544 MEDIUM
VMware's paravirtual RDMA - Memory Corruption
Mar 23, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-0330 MEDIUM
qemu 7.2.0-7.2.2 - Stack-based Buffer Overflow in lsi53c895a Device
Mar 06, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-36648 CRITICAL
QEMU < 7.0.0 - Remote Code Execution via Rocker Device Model
Aug 22, 2023
CVSS 10.0
EPSS 0.01
CVE-2022-4172 MEDIUM
QEMU - Buffer Overflow in ACPI ERST Device via read_erst_record() and write_erst_record()
Nov 29, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-4144 MEDIUM
QEMU < 7.1.0 - Out-of-bounds Read in QXL Display Device Emulation
Nov 29, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-3872 HIGH
QEMU < 7.1.0 - Off-by-one Read/Write in SDHCI Buffer Data Port Register
Nov 07, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-3165 MEDIUM
QEMU 6.1.0-7.0.0 - Denial of Service via VNC ClientCutText Message Integer Underflow
Oct 17, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-2962 HIGH
QEMU 4.2.0-7.0.0 - Denial of Service via Tulip DMA Reentrancy
Sep 13, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-0358 HIGH
QEMU virtio-fs < 6.2.0-7 - Privilege Escalation via SGID Directory Group Ownership
Aug 29, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-0216 MEDIUM
QEMU < 6.0.0 - Use-After-Free in LSI53C895A SCSI Host Bus Adapter Emulation
Aug 26, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-35414 HIGH
QEMU 4.1.50-7.0.0 - Use-After-Free in softmmu/physmem.c
Jul 11, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-1050 HIGH
QEMU < 2.20.1 - Use-After-Free in VMWare Paravirtual RDMA Device
Mar 29, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-26354 LOW
QEMU <= 6.2.0 - Memory Leak in vhost-vsock Error Handling
Mar 16, 2022
CVSS 3.2
EPSS 0.00
CVE-2022-26353 HIGH
QEMU 6.2.0 - Memory Leak via Virtio-Net Device Error Handling
Mar 16, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3735 MEDIUM
QEMU - Denial of Service via AHCI Controller Deadlock
Aug 26, 2022
CVSS 4.4
EPSS 0.00
CVE-2021-3929 HIGH
QEMU < 7.0.0 - Use-After-Free in NVME Controller Emulation
Aug 25, 2022
CVSS 8.2
EPSS 0.05
CVE-2021-4158 MEDIUM
QEMU 6.0.0-6.99 - Denial of Service via ACPI NULL Pointer Dereference
Aug 24, 2022
CVSS 6.0
EPSS 0.00
CVE-2021-3611 MEDIUM
QEMU < 7.0.0 - Denial of Service via Intel HD Audio Device Stack Overflow
May 11, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3750 HIGH
QEMU < 7.0.0 - Use-After-Free via USB EHCI Controller DMA Reentrancy
May 02, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-4207 HIGH
QEMU < 7.0.0 - Heap-Based Buffer Overflow via QXL Display Device Cursor Handling
Apr 29, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-4206 HIGH
QEMU < 7.0.0 - Heap-Based Buffer Overflow via QXL Cursor Allocation
Apr 29, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-20295 MEDIUM
qemu < 4.2.0-34 - Out-of-bounds Read
Apr 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3582 MEDIUM
QEMU < 2.17.2 - Denial of Service via PVRDMA CMD_CREATE_MR Command
Mar 25, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3748 HIGH
QEMU 0.10.0-6.1.0 - Use-After-Free in virtio-net Descriptor Handling
Mar 23, 2022
CVSS 7.5
EPSS 0.00
Products
qemu 419
Quick Filters
Critical CVEs With Exploits In CISA KEV