This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:qemu:qemu
Detail
VendorQemuFirst view 2008-12-24
ProductQemuLast view2019-06-24
VersionTypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:qemu:qemu

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
102019-06-24CVE-2019-12929NetworkLowNone Requ...
102019-06-24CVE-2019-12928NetworkLowNone Requ...
2.12019-03-21CVE-2019-8934LocalLowNone Requ...
42018-10-16CVE-2018-10839NetworkLowRequires ...
92018-07-02CVE-2017-2615NetworkLowRequires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52018-06-21CVE-2018-12617NetworkLowNone Requ...
2.12018-03-12CVE-2018-7858LocalLowNone Requ...
2.12018-01-23CVE-2018-5683LocalLowNone Requ...
2.12018-01-12CVE-2014-3471LocalLowNone Requ...
7.82018-01-09CVE-2017-15124NetworkLowNone Requ...
2.12017-12-06CVE-2017-17381LocalLowNone Requ...
2.12017-10-16CVE-2017-15289LocalLowNone Requ...
4.62017-10-16CVE-2015-7504LocalLowNone Requ...
52017-10-12CVE-2017-15268NetworkLowNone Requ...
1.92017-10-09CVE-2017-15038LocalMediumNone Requ...
7.22017-09-08CVE-2017-14167LocalLowNone Requ...
52017-09-01CVE-2017-13711NetworkLowNone Requ...
2.12017-09-01CVE-2017-13672LocalLowNone Requ...
2.12017-08-23CVE-2017-12809LocalLowNone Requ...
1.92017-08-10CVE-2014-0146LocalMediumNone Requ...
4.62017-08-10CVE-2014-0145LocalLowNone Requ...
4.42017-08-10CVE-2014-0143LocalMediumNone Requ...
2.12017-08-10CVE-2014-0142LocalLowNone Requ...
2.12017-08-02CVE-2017-11334LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
27% (33)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
10% (12)CWE-125Out-of-bounds Read
9% (11)CWE-772Missing Release of Resource after Effective Lifetime
6% (8)CWE-399Resource Management Errors
5% (7)CWE-20Improper Input Validation
Hide | Show 17 More...
%idName
5% (6)CWE-476NULL Pointer Dereference
5% (6)CWE-190Integer Overflow or Wraparound
5% (6)CWE-189Numeric Errors
3% (4)CWE-787Out-of-bounds Write
3% (4)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
2% (3)CWE-369Divide By Zero
2% (3)CWE-362Race Condition
2% (3)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (2)CWE-416Use After Free
1% (2)CWE-264Permissions, Privileges, and Access Controls
1% (2)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...
0% (1)CWE-732Incorrect Permission Assignment for Critical Resource
0% (1)CWE-287Improper Authentication
0% (1)CWE-284Access Control (Authorization) Issues
0% (1)CWE-200Information Exposure
0% (1)CWE-19Data Handling
0% (1)CWE-17Code

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:21985RHSA-2011:1801: qemu-kvm security update (Important)
oval:org.mitre.oval:def:21812RHSA-2011:1777: qemu-kvm security update (Important)
oval:org.mitre.oval:def:23594ELSA-2011:1801: qemu-kvm security update (Important)
oval:org.mitre.oval:def:23505ELSA-2011:1777: qemu-kvm security update (Important)
oval:org.mitre.oval:def:27840DEPRECATED: ELSA-2011-1777 -- qemu-kvm security update (important)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:26667RHSA-2014:1075: qemu-kvm security and bug fix update (Moderate)
oval:org.mitre.oval:def:27160ELSA-2014-0927 -- qemu-kvm security and bug fix update (moderate)
oval:org.mitre.oval:def:26880ELSA-2014-1075 -- qemu-kvm security and bug fix update (moderate)
oval:org.mitre.oval:def:28240DSA-3088-1 -- qemu-kvm security update
oval:org.mitre.oval:def:27930DSA-3087-1 -- qemu security update
oval:org.mitre.oval:def:28497USN-2439-1 -- QEMU vulnerabilities
oval:org.mitre.oval:def:21955RHSA-2011:1401: xen security and bug fix update (Moderate)
oval:org.mitre.oval:def:22448ELSA-2011:1401: xen security and bug fix update (Moderate)
oval:org.mitre.oval:def:27933DEPRECATED: ELSA-2011-1401 -- xen security and bug fix update (moderate)
oval:org.mitre.oval:def:11786Buffer overflow in the usb_host_handle_control function in the USB passthroug...
oval:org.mitre.oval:def:24016USN-2182-1 -- qemu, qemu-kvm vulnerabilities
oval:org.mitre.oval:def:25072RHSA-2014:0704: qemu-kvm security and bug fix update (Moderate)
oval:org.mitre.oval:def:27247ELSA-2014-0704 -- qemu-kvm security and bug fix update (moderate)
oval:org.mitre.oval:def:26768USN-2342-1 -- qemu, qemu-kvm vulnerabilities
oval:org.mitre.oval:def:27143SUSE-SU-2014:1278-1 -- Security update for kvm
oval:org.mitre.oval:def:25804SUSE-SU-2014:0816-1 -- Security update for KVM
oval:org.mitre.oval:def:24717DSA-2910-1 qemu-kvm - security update
oval:org.mitre.oval:def:24231DSA-2909-1 qemu - security update
oval:org.mitre.oval:def:24104RHSA-2014:0420: qemu-kvm security update (Moderate)
oval:org.mitre.oval:def:23845ELSA-2014:0420: qemu-kvm security update (Moderate)

Open Source Vulnerability Database (OSVDB)

idDescription
75279Qemu hw/scsi-disk.c scsi_disk_emulate_command() Function Command Parsing Loca...
74752qemu-kvm -runas Option Local Privilege Escalation
73618Qemu VirtIO virtqueue Request Parsing Local Overflow
70992QEMU Empty VNC Password Authentication Bypass
62347QEMU usb-linux.c usb_host_handle_control Function Crafted USB Packet Handling...
Hide | Show 6 More...
idDescription
59287VNC Server in QEMU vnc.c Use-after-free Fuzzy Screen Mode Protocol Arbitrary ...
59286VNC Server in QEMU vnc.c Use-after-free Invalid Message Data Type Arbitrary C...
59285VNC Server in QEMU vnc.c Use-after-free Data Transfer Disconnection Arbitrary...
52913KVM kvm-79 VNC Server vnc.c protocol_client_msg Function Crafted Message Remo...
52912QEMU VNC Server vnc.c protocol_client_msg Function Crafted Message Remote DoS
35494QEMU Cirrus VGA Extension cirrus_invalidate_region Function Multiple Overflows

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-10-22Name : Gentoo Security Advisory GLSA 201210-04 (ebuild)
File : nvt/glsa_201210_04.nasl
2012-07-30Name : CentOS Update for xen CESA-2011:1401 centos5 x86_64
File : nvt/gb_CESA-2011_1401_xen_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for qemu-img CESA-2011:1777 centos6
File : nvt/gb_CESA-2011_1777_qemu-img_centos6.nasl
2012-07-30Name : CentOS Update for qemu-img CESA-2011:1801 centos6
File : nvt/gb_CESA-2011_1801_qemu-img_centos6.nasl
2012-07-09Name : RedHat Update for qemu-kvm RHSA-2011:1531-03
File : nvt/gb_RHSA-2011_1531-03_qemu-kvm.nasl
Hide | Show 20 More...
idDescription
2012-07-09Name : RedHat Update for qemu-kvm RHSA-2011:1777-01
File : nvt/gb_RHSA-2011_1777-01_qemu-kvm.nasl
2012-06-08Name : Fedora Update for qemu FEDORA-2012-8604
File : nvt/gb_fedora_2012_8604_qemu_fc15.nasl
2012-06-06Name : RedHat Update for qemu-kvm RHSA-2011:0345-01
File : nvt/gb_RHSA-2011_0345-01_qemu-kvm.nasl
2012-06-06Name : RedHat Update for qemu-kvm RHSA-2011:0919-01
File : nvt/gb_RHSA-2011_0919-01_qemu-kvm.nasl
2011-10-31Name : RedHat Update for xen RHSA-2011:1401-01
File : nvt/gb_RHSA-2011_1401-01_xen.nasl
2011-10-31Name : CentOS Update for xen CESA-2011:1401 centos5 i386
File : nvt/gb_CESA-2011_1401_xen_centos5_i386.nasl
2011-08-07Name : Debian Security Advisory DSA 2282-1 (qemu-kvm)
File : nvt/deb_2282_1.nasl
2011-08-02Name : Ubuntu Update for qemu-kvm USN-1177-1
File : nvt/gb_ubuntu_USN_1177_1.nasl
2011-07-08Name : Ubuntu Update for qemu-kvm USN-1165-1
File : nvt/gb_ubuntu_USN_1165_1.nasl
2011-05-12Name : Debian Security Advisory DSA 2230-1 (qemu-kvm)
File : nvt/deb_2230_1.nasl
2011-02-16Name : Ubuntu Update for qemu-kvm vulnerability USN-1063-1
File : nvt/gb_ubuntu_USN_1063_1.nasl
2009-11-23Name : SLES11: Security update for KVM
File : nvt/sles11_kvm0.nasl
2009-10-31Name : QEMU VNC Server Denial of Service Vulnerability (Linux)
File : nvt/secpod_qemu_vnc_dos_vuln_lin.nasl
2009-06-05Name : Ubuntu USN-698-3 (nagios2)
File : nvt/ubuntu_698_3.nasl
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-771-1 (libmodplug)
File : nvt/ubuntu_771_1.nasl
2009-06-05Name : Ubuntu USN-772-1 (mpfr)
File : nvt/ubuntu_772_1.nasl
2009-06-05Name : Ubuntu USN-773-1 (pango1.0)
File : nvt/ubuntu_773_1.nasl
2009-06-05Name : Ubuntu USN-774-1 (moin)
File : nvt/ubuntu_774_1.nasl
2009-06-05Name : Ubuntu USN-776-2 (kvm)
File : nvt/ubuntu_776_2.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0112Oracle Linux & Virtualization Buffer Overflow Vulnerability
Severity : Category I - VMSKEY : V0060735
2015-A-0115QEMU Virtual Floppy Drive Controller (FDC) Buffer Overflow Vulnerability
Severity : Category II - VMSKEY : V0060741
2010-A-0037Multiple Vulnerabilities in Linux Kernel
Severity : Category I - VMSKEY : V0022704

Snort® IPS/IDS

DateDescription
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34488 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34487 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34486 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34485 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34484 - Type : OS-OTHER - Revision : 4
Hide | Show 3 More...
DateDescription
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34483 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34482 - Type : OS-OTHER - Revision : 4
2015-06-23QEMU floppy disk controller buffer overflow attempt
RuleID : 34481 - Type : OS-OTHER - Revision : 4

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-10Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10917_183R1.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-74fb8b257b.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-87f2ace20d.nasl - Type : ACT_GATHER_INFO
2018-12-01Name : The remote Debian host is missing a security update.
File : debian_DLA-1599.nasl - Type : ACT_GATHER_INFO
2018-11-13Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4338.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-09-18Name : The remote EulerOS Virtualization host is missing multiple security updates.
File : EulerOS_SA-2018-1259.nasl - Type : ACT_GATHER_INFO
2018-09-18Name : The remote EulerOS Virtualization host is missing multiple security updates.
File : EulerOS_SA-2018-1247.nasl - Type : ACT_GATHER_INFO
2018-09-07Name : The remote Debian host is missing a security update.
File : debian_DLA-1497.nasl - Type : ACT_GATHER_INFO
2018-07-16Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-2162.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1201.nasl - Type : ACT_GATHER_INFO
2018-06-12Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1034.nasl - Type : ACT_GATHER_INFO
2018-06-12Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1034.nasl - Type : ACT_GATHER_INFO
2018-05-31Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-1416.nasl - Type : ACT_GATHER_INFO
2018-05-30Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4213.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1144.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1145.nasl - Type : ACT_GATHER_INFO
2018-05-02Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1113.nasl - Type : ACT_GATHER_INFO
2018-04-27Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-0816.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201804-08.nasl - Type : ACT_GATHER_INFO
2018-03-15Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-0516.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-8db9c497f9.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-908f063bb6.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-b4329d6ee5.nasl - Type : ACT_GATHER_INFO
2017-12-26Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2017-934.nasl - Type : ACT_GATHER_INFO
2017-12-18Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2017-1320.nasl - Type : ACT_GATHER_INFO