Vulnerabilidades em QEMU
18 resultadosCVE-2017-15118HIGHA stack-based buffer overflow vulnerability was found in NBD server implementation in qemu before 2.11 allowing a client to request an exporEPSS 11.9%CVE-2017-7539MEDIUMAn assertion-failure flaw was found in Qemu before 2.10.1, in the Network Block Device (NBD) server's initial connection negotiation, where EPSS 5.5%CVE-2016-9603MEDIUMA heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occurEPSS 4.4%CVE-2017-2615MEDIUMQuick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur whEPSS 3.7%CVE-2015-5239—Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CEPSS 3.6%CVE-2017-2620MEDIUMQuick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The isEPSS 3.5%CVE-2017-15119MEDIUMThe Network Block Device (NBD) server in Quick Emulator (QEMU) before 2.11 is vulnerable to a denial of service issue. It could occur if a cEPSS 3.3%CVE-2017-2633MEDIUMAn out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while EPSS 3.0%CVE-2015-5745—Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial ofEPSS 3.0%CVE-2017-15124—VNC server implementation in Quick Emulator (QEMU) 2.11.0 and older was found to be vulnerable to an unbounded memory allocation issue, as iEPSS 2.8%CVE-2017-2630MEDIUMA stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the Network Block Device (NBD) client support. TheEPSS 2.6%CVE-2015-5278—The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop and instaEPSS 2.3%CVE-2015-6815—The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a netwEPSS 1.0%CVE-2013-2016—A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device. EPSS 0.5%CVE-2013-4532—Qemu 1.1.2+dfsg to 2.1+dfsg suffers from a buffer overrun which could potentially result in arbitrary code execution on the host with the prEPSS 0.5%CVE-2017-7493—Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper accesEPSS 0.4%CVE-2025-54566MEDIUMhw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327.EPSS 0.2%CVE-2025-54567MEDIUMhw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.EPSS 0.2%