Max CVSS | 7.5 | Min CVSS | 4.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-4536 | 4.6 |
An user able to alter the savevm data (either on the disk or over the wire during migration) could use this flaw to to corrupt QEMU process memory on the (destination) host, which could potentially result in arbitrary code execution on the host with
|
03-03-2023 - 14:44 | 28-05-2021 - 17:15 | |
CVE-2013-6399 | 7.5 |
Array index error in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image.
|
13-02-2023 - 04:49 | 04-11-2014 - 21:55 | |
CVE-2013-4529 | 7.5 |
Buffer overflow in hw/pci/pcie_aer.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large log_num value in a savevm image.
|
13-02-2023 - 04:47 | 04-11-2014 - 21:55 | |
CVE-2013-4542 | 7.5 |
The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds array access.
|
13-02-2023 - 04:47 | 04-11-2014 - 21:55 | |
CVE-2013-4527 | 7.5 |
Buffer overflow in hw/timer/hpet.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via vectors related to the number of timers.
|
13-02-2023 - 04:47 | 04-11-2014 - 21:55 | |
CVE-2013-4541 | 7.5 |
The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.
|
13-02-2023 - 04:47 | 04-11-2014 - 21:55 | |
CVE-2013-4148 | 7.5 |
Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.
|
13-02-2023 - 04:44 | 04-11-2014 - 21:55 | |
CVE-2013-4150 | 7.5 |
The virtio_net_load function in hw/net/virtio-net.c in QEMU 1.5.0 through 1.7.x before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors in which the value of curr_queues is greater than max_que
|
13-02-2023 - 04:44 | 04-11-2014 - 21:55 | |
CVE-2013-4151 | 7.5 |
The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.
|
13-02-2023 - 04:44 | 04-11-2014 - 21:55 | |
CVE-2013-4149 | 7.5 |
Buffer overflow in virtio_net_load function in net/virtio-net.c in QEMU 1.3.0 through 1.7.x before 1.7.2 might allow remote attackers to execute arbitrary code via a large MAC table.
|
13-02-2023 - 04:44 | 04-11-2014 - 21:55 | |
CVE-2014-3461 | 6.8 |
hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."
|
13-02-2023 - 00:39 | 04-11-2014 - 21:55 | |
CVE-2014-0222 | 7.5 |
Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.
|
13-02-2023 - 00:37 | 04-11-2014 - 21:55 | |
CVE-2014-0223 | 4.6 |
Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read
|
13-02-2023 - 00:37 | 04-11-2014 - 21:55 | |
CVE-2014-0182 | 7.5 |
Heap-based buffer overflow in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted config length in a savevm image.
|
13-02-2023 - 00:35 | 04-11-2014 - 21:55 | |
CVE-2013-4535 | 7.2 |
The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.
|
13-02-2020 - 00:25 | 11-02-2020 - 16:15 |