Published: 09/07/2018 Updated: 12/02/2023

CVSS v2 Base Score: 7.7 | Impact Score: 10 | Exploitability Score: 5.1

CVSS v3 Base Score: 9 | Impact Score: 6 | Exploitability Score: 2.3

VMScore: 685

Vector: AV:A/AC:L/Au:S/C:C/I:C/A:C

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System (9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu
qemu qemu 2.9.0

Debian Bug report logs - #860785 qemu: CVE-2017-7471: 9p: virtfs allows guest to change filesystem attributes on host Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 20 Apr 2017 05:18:02 UTC Sever ...

Debian Bug report logs - #861348 qemu: CVE-2017-8086: 9pfs: host memory leakage via v9pfs_list_xattr Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 27 Apr 2017 19:45:02 UTC Severity: normal Tags: ...

Debian Bug report logs - #861351 qemu: CVE-2017-8112: scsi: vmw_pvscsi: infinite loop in pvscsi_log2 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 27 Apr 2017 20:09:01 UTC Severity: normal Tags ...

Debian Bug report logs - #862289 qemu: CVE-2017-8379: host memory lekage via keyboard events Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 10 May 2017 16:45:01 UTC Severity: minor Tags: patch, s ...

Debian Bug report logs - #862282 qemu: CVE-2017-8380: scsi: megasas: out-of-bounds read in megasas_mmio_write Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 10 May 2017 15:09:04 UTC Severity: nor ...

Debian Bug report logs - #862280 qemu: CVE-2017-8309: audio: host memory leakage via capture buffer Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 10 May 2017 14:57:04 UTC Severity: minor Tags: f ...

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System (9pfs) support, is vulnerable to an improper access control issue It could occur while accessing files on a shared host directory A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalati ...

CWE-732 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7471 http://www.openwall.com/lists/oss-security/2017/04/19/2 https://security.gentoo.org/glsa/201706-03 http://www.securityfocus.com/bid/97970 https://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=9c6b899f7a46893ab3b671e341a2234e9c0c060e https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860785 https://access.redhat.com/security/cve/cve-2017-7471

CVE-2017-7471

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect