| Max CVSS | 7.2 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-14167 | 7.2 |
Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.
|
16-11-2020 - 20:21 | 08-09-2017 - 18:29 | |
| CVE-2017-13672 | 2.1 |
QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.
|
10-11-2020 - 18:41 | 01-09-2017 - 13:29 | |
| CVE-2017-12809 | 2.1 |
QEMU (aka Quick Emulator), when built with the IDE disk and CD/DVD-ROM Emulator support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by flushing an empty CDROM device drive.
|
10-11-2020 - 18:41 | 23-08-2017 - 16:29 | |
| CVE-2017-9375 | 1.9 |
QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service (infinite recursive call) via vectors involving control transfer descriptors sequencing.
|
10-11-2020 - 17:47 | 16-06-2017 - 22:29 | |
| CVE-2017-13711 | 5.0 |
Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU (aka Quick Emulator) allows attackers to cause a denial of service (QEMU instance crash) by leveraging failure to properly clear ifq_so from pending packets.
|
29-10-2020 - 17:24 | 01-09-2017 - 13:29 |