Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kvm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0431
QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or...
Redhat Enterprise Virtualization 2.2
Redhat Kvm 83
NA
CVE-2010-0435
The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation...
Redhat Enterprise Virtualization 2.2
Redhat Kvm 83
NA
CVE-2010-2784
The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, w...
Redhat Enterprise Virtualization 2.2
Redhat Kvm 83
NA
CVE-2008-4539
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this iss...
Kvm Qumranet Kvm
Qemu Qemu
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Debian Debian Linux 5.0
Debian Debian Linux 4.0
5.5
CVSSv3
CVE-2017-7718
hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functi...
Qemu Qemu
Qemu Qemu 2.9.0
Debian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-7980
Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and previous versions allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation...
Qemu Qemu
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 16.10
Canonical Ubuntu Linux 17.04
Debian Debian Linux 8.0
Redhat Openstack 6.0
Redhat Openstack 7.0
Redhat Openstack 8
Redhat Openstack 10
Redhat Openstack 9
Redhat Openstack 5.0
Redhat Virtualization 3.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
NA
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.5.6
Cisco Email Security Virtual Appliance 8.0.0
Cisco Web Security Virtual Appliance 8.7.0
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Email Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.0
NA
CVE-2008-5714
Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote malicious users to guess the VNC password, which is limited to seven characters where eight was intended.
Qemu Qemu 0.9.1
NA
CVE-2011-4111
Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU prior to 0.15.2 and 1.x prior to 1.0-rc4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.
Redhat Enterprise Linux Server Supplementary 6.1.z
Redhat Enterprise Linux 6.0
Qemu Qemu 1.0
Qemu Qemu 0.15.0
Qemu Qemu
NA
CVE-2011-2212
Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and previous versions allows privileged guest users to cause a denial of service (guest crash) or gain privileges via a crafted indirect descriptor related to "virtqueue in and out requests."
Qemu Qemu 0.12.2
Qemu Qemu 0.12.0
Qemu Qemu 0.1.6
Qemu Qemu 0.13.0
Qemu Qemu 0.5.3
Qemu Qemu 0.4.2
Qemu Qemu 0.10.3
Qemu Qemu 0.11.0-rc1
Qemu Qemu 0.1.5
Qemu Qemu 0.5.1
Qemu Qemu 0.8.2
Qemu Qemu 0.11.0
Qemu Qemu 0.5.5
Qemu Qemu 0.10.1
Qemu Qemu 0.9.0
Qemu Qemu 0.7.2
Qemu Qemu 0.12.5
Qemu Qemu 0.1.3
Qemu Qemu 0.14.0
Qemu Qemu 0.11.1
Qemu Qemu 0.7.1
Qemu Qemu 0.9.1-5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »