| Max CVSS | 7.2 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-3461 | 6.8 |
hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."
|
13-02-2023 - 00:39 | 04-11-2014 - 21:55 | |
| CVE-2014-0223 | 4.6 |
Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read
|
13-02-2023 - 00:37 | 04-11-2014 - 21:55 | |
| CVE-2014-0150 | 4.9 |
Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.
|
02-11-2020 - 14:39 | 18-04-2014 - 14:55 | |
| CVE-2013-4344 | 7.2 |
Buffer overflow in the SCSI implementation in QEMU, as used in Xen, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command.
|
11-08-2020 - 15:21 | 04-10-2013 - 17:55 |