Max CVSS | 7.2 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2012-3515 | 7.2 |
Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device mode
|
13-02-2023 - 04:34 | 23-11-2012 - 20:55 | |
CVE-2011-4111 | 6.8 |
Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC
|
13-02-2023 - 04:32 | 26-02-2014 - 15:55 | |
CVE-2011-3346 | 4.0 |
Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU before 0.15.2, as used by Xen, might allow local guest users with permission to access the CD-ROM to cause a denial of service (guest crash) via a crafted SAI READ CAPACITY SCSI command.
|
13-02-2023 - 01:20 | 01-04-2014 - 06:35 | |
CVE-2012-2652 | 4.4 |
The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.
|
13-02-2023 - 00:25 | 07-08-2012 - 20:55 |