Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2014-7840

Published: 12/12/2014 Updated: 13/02/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Qemu

Vulnerability Summary

The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote malicious users to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

qemu qemu

redhat enterprise linux desktop 7.0

redhat enterprise linux workstation 7.0

redhat enterprise linux server 7.0

redhat enterprise linux server aus 7.3

redhat enterprise linux server aus 7.4

redhat enterprise linux eus 7.3

redhat enterprise linux eus 7.4

redhat enterprise linux eus 7.5

redhat enterprise linux server aus 7.6

redhat enterprise linux eus 7.6

redhat enterprise linux server aus 7.7

redhat enterprise linux eus 7.7

redhat virtualization 3.0

Vendor Advisories

Debian CVElist Bug Report Logs: qemu: CVE-2014-7840: insufficient parameter validation during ram load
Debian Bug report logs - #769451 qemu: CVE-2014-7840: insufficient parameter validation during ram load Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 13 Nov 2014 17:42:01 UTC Severity: important ...
Ubuntu Security Notice: qemu, qemu-kvm vulnerabilities
Several security issues were fixed in QEMU ...
Red Hat: CVE-2014-7840
It was found that certain values that were read when loading RAM during migration were not validated A user able to alter the savevm data (either on the disk or over the wire during migration) could use either of these flaws to corrupt QEMU process memory on the (destination) host, which could potentially result in arbitrary code execution on the ...

References

CWE-20http://thread.gmane.org/gmane.comp.emulators.qemu/306117https://bugzilla.redhat.com/show_bug.cgi?id=1163075http://rhn.redhat.com/errata/RHSA-2015-0349.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0624.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/99194http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=0be839a2701369f669532ea5884c15bead1c6e08https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769451https://usn.ubuntu.com/2439-1/https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2014-7840
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook