| Max CVSS | 6.9 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-2392 | 2.1 |
The is_rndis function in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 does not properly validate USB configuration descriptor objects, which allows local guest OS administrators to cause a denial of service (NULL pointer de
|
13-02-2023 - 04:50 | 16-06-2016 - 18:59 | |
| CVE-2016-1714 | 6.9 |
The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg.c in QEMU before 2.4, when built with the Firmware Configuration device emulation support, allow guest OS users with the CAP_SYS_RAWIO privilege to cause a denial of service (out-o
|
12-02-2023 - 23:17 | 07-04-2016 - 19:59 | |
| CVE-2016-1981 | 2.1 |
QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is
|
12-02-2023 - 23:17 | 29-12-2016 - 22:59 | |
| CVE-2016-2858 | 1.9 |
QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbitrary stack based allocation and memory corruption.
|
12-02-2023 - 23:17 | 07-04-2016 - 19:59 | |
| CVE-2016-2538 | 3.6 |
Multiple integer overflows in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 allow local guest OS administrators to cause a denial of service (QEMU process crash) or obtain sensitive host memory information via a remote NDIS
|
12-02-2023 - 23:17 | 16-06-2016 - 18:59 | |
| CVE-2015-8619 | 5.0 |
The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).
|
14-12-2020 - 19:56 | 13-04-2017 - 17:59 | |
| CVE-2016-2197 | 2.1 |
QEMU (aka Quick Emulator) built with an IDE AHCI emulation support is vulnerable to a null pointer dereference flaw. It occurs while unmapping the Frame Information Structure (FIS) and Command List Block (CLB) entries. A privileged user inside guest
|
10-11-2020 - 19:01 | 29-12-2016 - 22:59 | |
| CVE-2016-1922 | 2.1 |
QEMU (aka Quick Emulator) built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'current_cpu' remains null, whic
|
10-11-2020 - 18:46 | 29-12-2016 - 22:59 | |
| CVE-2016-2198 | 2.1 |
QEMU (aka Quick Emulator) built with the USB EHCI emulation support is vulnerable to a null pointer dereference flaw. It could occur when an application attempts to write to EHCI capabilities registers. A privileged user inside quest could use this f
|
10-11-2020 - 17:54 | 29-12-2016 - 22:59 | |
| CVE-2015-8613 | 1.9 |
Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INF
|
11-09-2020 - 15:20 | 11-04-2017 - 19:59 |