| Max CVSS | 6.9 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-8504 | 3.5 |
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
|
13-02-2023 - 00:55 | 11-04-2017 - 19:59 | |
| CVE-2015-7512 | 6.8 |
Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet.
|
13-02-2023 - 00:54 | 08-01-2016 - 21:59 | |
| CVE-2015-7504 | 4.6 |
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
|
13-02-2023 - 00:53 | 16-10-2017 - 20:29 | |
| CVE-2016-1714 | 6.9 |
The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg.c in QEMU before 2.4, when built with the Firmware Configuration device emulation support, allow guest OS users with the CAP_SYS_RAWIO privilege to cause a denial of service (out-o
|
12-02-2023 - 23:17 | 07-04-2016 - 19:59 | |
| CVE-2016-1981 | 2.1 |
QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is
|
12-02-2023 - 23:17 | 29-12-2016 - 22:59 | |
| CVE-2016-1568 | 6.9 |
Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ)
|
12-02-2023 - 23:16 | 12-04-2016 - 02:00 | |
| CVE-2015-8558 | 4.9 |
The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular isochronous transfer descriptor (iTD) list.
|
12-02-2023 - 23:15 | 23-05-2016 - 19:59 | |
| CVE-2015-8345 | 2.1 |
The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
|
14-12-2020 - 19:45 | 13-04-2017 - 17:59 | |
| CVE-2016-1922 | 2.1 |
QEMU (aka Quick Emulator) built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'current_cpu' remains null, whic
|
10-11-2020 - 18:46 | 29-12-2016 - 22:59 | |
| CVE-2015-8743 | 3.6 |
QEMU (aka Quick Emulator) built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged (CAP_SYS_RAWIO) user/process could use this flaw to leak or corru
|
29-10-2020 - 17:25 | 29-12-2016 - 22:59 | |
| CVE-2015-7295 | 5.0 |
hw/virtio/virtio.c in the Virtual Network Device (virtio-net) support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service (guest network consumption) via a flood of jumbo frames on th
|
09-09-2020 - 15:14 | 09-11-2015 - 16:59 |