Latest vulnerabilities for "qemu qemu"

oss-secQEMU CXL Memory Corruption Vulnerability ("QEMUtiny")

First published (updated )

https://seclists.org/oss-sec/2026/q2/618

Qemu QemuQemu-kvm: heap buffer out-of-bounds read in vmdk compressed grain parsing

Risk 32

Severity

5.1

First published (updated )

CVE-2026-2243

Qemu QemuA heap buffer over-read was found in block/vmdk.c. A crafted VMDK file can make qemu-img (or qemu wi…

Risk 5

Severity

1

First published (updated )

REDHAT-BUG-2440934

Qemu QemuQemu-kvm: heap off-by-one in kvm xen physdevop_map_pirq

Risk 36

Severity

6.5

First published (updated )

CVE-2026-0665

Qemu QemuAn off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw…

Risk 19

Severity

4

First published (updated )

REDHAT-BUG-2428640

Qemu QemuQemu-kvm: unbounded allocation in virtio-crypto

Risk 32

Severity

5.5

First published (updated )

CVE-2025-14876

Qemu QemuA flaw was found in the virtio-crypto device of QEMU. The symmetric path enforces a length limit usi…

Risk 19

Severity

4

First published (updated )

REDHAT-BUG-2423549

Qemu QemuQemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

Risk 36

Severity

6.2

First published (updated )

CVE-2025-12464

Qemu QemuQemu-kvm: vnc websocket handshake use-after-free

Risk 43

Severity

7.5

First published (updated )

CVE-2025-11234

Qemu QemuUse After Free

Risk 19

Severity

4

First published (updated )

REDHAT-BUG-2401209

Qemu QemuQemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback

Risk 18

Severity

3.3

First published (updated )

CVE-2025-8860

Qemu Qemuhw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue …

Risk 34

Severity

5.4

First published (updated )

CVE-2025-54567

Qemu Qemuhw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to C…

Risk 34

Severity

5.4

First published (updated )

CVE-2025-54566

Linux Linux kernelvhost-scsi: protect vq->log_used with vq->mutex

Risk 32

Severity

5.5

First published (updated )

CVE-2025-38074

Qemu QemuQemu-kvm: information leak in virtio devices

Risk 15

Severity

3.8

EPSS

0.04%

First published (updated )

CVE-2024-8612

redhat Enterprise LinuxQemu-kvm: usb: assertion failure in usb_ep_get()

Risk 24

Severity

5.5

EPSS

0.04%

First published (updated )

CVE-2024-8354

debian/qemuQemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()

Risk 72

Severity

7.8

First published (updated )

CVE-2024-7730

Qemu QemuQemu: denial of service via improper synchronization in qemu nbd server during socket closure

Risk 31

Severity

7.5

EPSS

0.04%

First published (updated )

CVE-2024-7409

redhat Enterprise LinuxQemu-kvm: virtio-net: queue index out-of-bounds access in software rss

Risk 28

Severity

6.8

EPSS

0.04%

First published (updated )

CVE-2024-6505

Qemu QemuQemu-kvm: net: assertion failure in update_sctp_checksum()

Risk 24

Severity

5.5

EPSS

0.04%

First published (updated )

CVE-2024-3567

Qemu QemuQemu: sdhci: heap buffer overflow in sdhci_write_dataport()

Risk 32

Severity

6

First published (updated )

CVE-2024-3447

Microsoft cbl2 qemu 6.2.0-24Buffer Overflow, Integer Underflow

Risk 56

Severity

8.8

EPSS

0.04%

First published (updated )

CVE-2024-24474

Qemu QemuQemu: vnc: null pointer dereference in qemu_clipboard_request()

Risk 27

Severity

6.5

EPSS

0.04%

First published (updated )

CVE-2023-6683

redhat Enterprise LinuxQemu: virtio-net: stack buffer overflow in virtio_net_flush_tx()

Risk 29

Severity

5.3

EPSS

0.04%

First published (updated )

CVE-2023-6693

redhat Enterprise LinuxQemu: improper ide controller reset can lead to mbr overwrite

Risk 66

Severity

7

First published (updated )

CVE-2023-5088

Qemu QemuHeap buffer overflow in virtio_crypto_sym_op_helper()

Risk 38

Severity

6.5

First published (updated )

CVE-2023-3180

redhat Enterprise LinuxQemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()

Risk 38

Severity

6.5

First published (updated )

CVE-2023-3019

Qemu QemuImproper i/o watch removal in tls handshake can lead to remote unauthenticated denial of service

Risk 46

Severity

7.5

First published (updated )

CVE-2023-3354

Qemu QemuNull Pointer Dereference

Risk 33

Severity

7

First published (updated )

REDHAT-BUG-2216478

ubuntu/qemuTriggerable assertion due to race condition in hot-unplug

Risk 34

Severity

5.6

First published (updated )

CVE-2023-3301

Trending

Versions

oss-secQEMU CXL Memory Corruption Vulnerability ("QEMUtiny")

Qemu QemuQemu-kvm: heap buffer out-of-bounds read in vmdk compressed grain parsing

Qemu QemuA heap buffer over-read was found in block/vmdk.c. A crafted VMDK file can make qemu-img (or qemu wi…

Qemu QemuQemu-kvm: heap off-by-one in kvm xen physdevop_map_pirq

Qemu QemuAn off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw…

Don't miss critical vulnerabilities

Qemu QemuQemu-kvm: unbounded allocation in virtio-crypto

Qemu QemuA flaw was found in the virtio-crypto device of QEMU. The symmetric path enforces a length limit usi…

Qemu QemuQemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

Qemu QemuQemu-kvm: vnc websocket handshake use-after-free

Qemu QemuUse After Free

Don't miss critical vulnerabilities

Qemu QemuQemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback

Qemu Qemuhw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue …

Qemu Qemuhw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to C…

Linux Linux kernelvhost-scsi: protect vq->log_used with vq->mutex

Qemu QemuQemu-kvm: information leak in virtio devices

Don't miss critical vulnerabilities

redhat Enterprise LinuxQemu-kvm: usb: assertion failure in usb_ep_get()

debian/qemuQemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()

Qemu QemuQemu: denial of service via improper synchronization in qemu nbd server during socket closure

redhat Enterprise LinuxQemu-kvm: virtio-net: queue index out-of-bounds access in software rss

Qemu QemuQemu-kvm: net: assertion failure in update_sctp_checksum()

Don't miss critical vulnerabilities

Qemu QemuQemu: sdhci: heap buffer overflow in sdhci_write_dataport()

Microsoft cbl2 qemu 6.2.0-24Buffer Overflow, Integer Underflow

Qemu QemuQemu: vnc: null pointer dereference in qemu_clipboard_request()

redhat Enterprise LinuxQemu: virtio-net: stack buffer overflow in virtio_net_flush_tx()

redhat Enterprise LinuxQemu: improper ide controller reset can lead to mbr overwrite

Don't miss critical vulnerabilities

Qemu QemuHeap buffer overflow in virtio_crypto_sym_op_helper()

redhat Enterprise LinuxQemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()

Qemu QemuImproper i/o watch removal in tls handshake can lead to remote unauthenticated denial of service

Qemu QemuNull Pointer Dereference

ubuntu/qemuTriggerable assertion due to race condition in hot-unplug

Don't miss critical vulnerabilities

Company

Resources

Contact