Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:qemu:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Qemu (8cd73977-180b-5e9e-810f-3bb9c7ec85bf) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-3354 |
vulnerable | 2026-06-08 06:09:39.360839 |
Improper i/o watch removal in tls handshake can lead to remote unauthenticated denial of service
HIGH (7.5)
A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a certain threshold and if so, cleans up the previous connection. If the previous connection happens to be in the handshake phase and fails, QEMU cleans up the connection again, resulting in a NULL pointer dereference issue. This could allow a remote unauthenticated client to cause a denial of service.
Published: 2023-07-11T16:16:56.294Z
Updated: 2025-02-13T16:55:08.379Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3301 |
not_vulnerable | 2026-06-08 06:09:39.097116 |
Triggerable assertion due to race condition in hot-unplug
MEDIUM (5.6)
A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service.
Published: 2023-09-13T16:09:36.861Z
Updated: 2025-02-13T16:55:04.152Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3180 |
vulnerable | 2026-06-08 06:09:38.775113 |
Heap buffer overflow in virtio_crypto_sym_op_helper()
MEDIUM (6)
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption requests in virtio_crypto_handle_sym_req. There is no check for the value of `src_len` and `dst_len` in virtio_crypto_sym_op_helper, potentially leading to a heap buffer overflow when the two values differ.
Published: 2023-08-03T14:31:36.083Z
Updated: 2024-09-25T19:56:37.371Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2680 |
vulnerable | 2026-06-08 06:02:42.815711 |
Dma reentrancy issue (incomplete fix for cve-2021-3750)
HIGH (7.5)
This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750.
Published: 2023-09-13T16:50:53.532Z
Updated: 2025-02-13T16:44:57.370Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1386 |
vulnerable | 2026-06-08 05:52:35.744546 |
Qemu: 9pfs: suid/sgid bits not dropped on file write
LOW (3.3)
A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. When a local user in the guest writes an executable file with SUID or SGID, none of these privileged bits are correctly dropped. As a result, in rare circumstances, this flaw could be used by malicious users in the guest to elevate their privileges within the guest and help a host local user to elevate privileges on the host.
Published: 2023-07-24T15:19:25.843Z
Updated: 2024-09-25T19:57:50.614Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0664 |
vulnerable | 2026-06-08 05:52:32.228527 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-3872 |
vulnerable | 2026-06-08 05:48:22.505344 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-3165 |
vulnerable | 2026-06-08 05:47:19.596721 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-2962 |
vulnerable | 2026-06-08 05:43:36.798451 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-1050 |
vulnerable | 2026-06-08 05:39:12.066381 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-0216 |
vulnerable | 2026-06-08 05:39:09.513734 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-4207 |
vulnerable | 2026-06-08 05:38:08.727585 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-4206 |
vulnerable | 2026-06-08 05:38:08.719962 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-4158 |
vulnerable | 2026-06-08 05:38:08.549616 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-4145 |
vulnerable | 2026-06-08 05:38:08.510878 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3947 |
vulnerable | 2026-06-08 05:33:58.081672 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3930 |
vulnerable | 2026-06-08 05:33:54.586132 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3929 |
vulnerable | 2026-06-08 05:33:54.585500 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3750 |
vulnerable | 2026-06-08 05:33:53.923828 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3735 |
vulnerable | 2026-06-08 05:33:53.872616 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3713 |
vulnerable | 2026-06-08 05:33:53.772783 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3682 |
vulnerable | 2026-06-08 05:33:53.408361 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3638 |
vulnerable | 2026-06-08 05:33:53.235920 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3611 |
vulnerable | 2026-06-08 05:33:53.115858 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3608 |
vulnerable | 2026-06-08 05:33:53.086114 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3607 |
vulnerable | 2026-06-08 05:33:53.085656 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3595 |
vulnerable | 2026-06-08 05:33:52.894899 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3594 |
vulnerable | 2026-06-08 05:33:52.894422 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3593 |
vulnerable | 2026-06-08 05:33:52.893807 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3592 |
vulnerable | 2026-06-08 05:33:52.891376 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3582 |
vulnerable | 2026-06-08 05:33:52.874622 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3546 |
vulnerable | 2026-06-08 05:33:52.749216 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3545 |
vulnerable | 2026-06-08 05:33:52.748835 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3544 |
vulnerable | 2026-06-08 05:33:52.748439 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3527 |
vulnerable | 2026-06-08 05:33:52.714251 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3507 |
vulnerable | 2026-06-08 05:33:52.516031 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3416 |
vulnerable | 2026-06-08 05:33:51.289374 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3409 |
vulnerable | 2026-06-08 05:33:51.275454 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3392 |
vulnerable | 2026-06-08 05:33:51.245011 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20295 |
vulnerable | 2026-06-08 05:29:08.921229 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20263 |
vulnerable | 2026-06-08 05:29:08.844990 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20257 |
vulnerable | 2026-06-08 05:29:08.827282 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20255 |
vulnerable | 2026-06-08 05:29:08.823589 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20221 |
vulnerable | 2026-06-08 05:29:08.736467 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20203 |
vulnerable | 2026-06-08 05:29:08.704945 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20196 |
vulnerable | 2026-06-08 05:29:08.689691 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20181 |
vulnerable | 2026-06-08 05:29:08.653318 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35517 |
vulnerable | 2026-06-08 05:25:01.272103 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35506 |
vulnerable | 2026-06-08 05:25:01.224247 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35505 |
vulnerable | 2026-06-08 05:25:01.220465 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35504 |
vulnerable | 2026-06-08 05:25:01.219817 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35503 |
vulnerable | 2026-06-08 05:25:01.218498 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-27821 |
vulnerable | 2026-06-08 05:23:53.244293 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-25723 |
vulnerable | 2026-06-08 05:23:49.258098 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14394 |
vulnerable | 2026-06-08 05:19:23.230780 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14364 |
vulnerable | 2026-06-08 05:19:23.125162 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-0148 |
vulnerable | 2026-06-08 05:05:11.805105 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-0147 |
vulnerable | 2026-06-08 05:05:11.804508 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-4536 |
vulnerable | 2026-06-08 05:04:48.056705 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-4535 |
vulnerable | 2026-06-08 05:04:48.052404 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.