Max CVSS | 7.2 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-6351 | 7.2 |
The esp_do_dma function in hw/scsi/esp.c in QEMU (aka Quick Emulator), when built with ESP/NCR53C9x controller emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) or execut
|
12-02-2023 - 23:25 | 07-09-2016 - 18:59 | |
CVE-2016-5126 | 4.6 |
Heap-based buffer overflow in the iscsi_aio_ioctl function in block/iscsi.c in QEMU allows local guest OS users to cause a denial of service (QEMU process crash) or possibly execute arbitrary code via a crafted iSCSI asynchronous I/O ioctl call.
|
12-02-2023 - 23:23 | 01-06-2016 - 22:59 | |
CVE-2016-5338 | 4.6 |
The (1) esp_reg_read and (2) esp_reg_write functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service (QEMU process crash) or execute arbitrary code on the QEMU host via vectors related to the information tran
|
12-02-2023 - 23:23 | 14-06-2016 - 14:59 | |
CVE-2016-5337 | 2.1 |
The megasas_ctrl_get_info function in hw/scsi/megasas.c in QEMU allows local guest OS administrators to obtain sensitive host memory information via vectors related to reading device control information.
|
12-02-2023 - 23:23 | 14-06-2016 - 14:59 | |
CVE-2016-5403 | 4.9 |
The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without waiting for completion.
|
04-08-2021 - 17:15 | 02-08-2016 - 16:59 | |
CVE-2016-4952 | 1.9 |
QEMU (aka Quick Emulator), when built with VMWARE PVSCSI paravirtual SCSI bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds array access) via vectors related to the (1) PVSCSI_CMD_SETUP_RINGS or (
|
21-10-2020 - 20:52 | 02-09-2016 - 14:59 | |
CVE-2016-5105 | 1.9 |
The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involvin
|
21-10-2020 - 20:52 | 02-09-2016 - 14:59 | |
CVE-2016-5238 | 2.1 |
The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from the information transfer buffer in non-DMA mode.
|
21-10-2020 - 20:50 | 14-06-2016 - 14:59 | |
CVE-2016-5106 | 1.9 |
The megasas_dcmd_set_properties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of service (out-of-bounds write access) via vectors in
|
21-10-2020 - 20:49 | 02-09-2016 - 14:59 | |
CVE-2016-5107 | 1.9 |
The megasas_lookup_frame function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds read and crash) via unspecified vectors.
|
21-10-2020 - 20:46 | 02-09-2016 - 14:59 | |
CVE-2016-4439 | 4.6 |
The esp_reg_write function in hw/scsi/esp.c in the 53C9X Fast SCSI Controller (FSC) support in QEMU does not properly check command buffer length, which allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU p
|
14-05-2020 - 15:28 | 20-05-2016 - 14:59 | |
CVE-2016-4441 | 2.1 |
The get_cmd function in hw/scsi/esp.c in the 53C9X Fast SCSI Controller (FSC) support in QEMU does not properly check DMA length, which allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via
|
14-05-2020 - 15:28 | 20-05-2016 - 14:59 | |
CVE-2016-4454 | 3.6 |
The vmsvga_fifo_read_raw function in hw/display/vmware_vga.c in QEMU allows local guest OS administrators to obtain sensitive host memory information or cause a denial of service (QEMU process crash) by changing FIFO registers and issuing a VGA comma
|
14-05-2020 - 13:55 | 01-06-2016 - 22:59 | |
CVE-2016-4453 | 4.9 |
The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a VGA command.
|
14-05-2020 - 13:32 | 01-06-2016 - 22:59 |