Lucene search
RedhatCVE-2023-3301HistorySep 13, 2023 - 5:15 p.m.
CVE-2023-3301
2023-09-1317:15:10
CWE-617
CWE-362
redhat
web.nvd.nist.gov
313
qemu
cve-2023-3301
flaw
race scenario
hot-unplug
denial of service
CVSS3
5.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
AI Score
5.7
Confidence
High
EPSS
0
Percentile
5.1%
A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service.
Affected configurations
Node
qemuqemuRange≤8.0.3
Node
redhatenterprise_linuxMatch8.0
ORredhatenterprise_linuxMatch9.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| qemu | qemu | * | cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 8.0 | cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 9.0 | cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "qemu",
"vendor": "n/a",
"versions": [
{
"version": "8.1.0-rc0",
"status": "unaffected"
}
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "qemu-kvm",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "qemu-kvm",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "qemu-kvm-ma",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "virt:rhel/qemu-kvm",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8 Advanced Virtualization",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "virt:av/qemu-kvm",
"defaultStatus": "affected",
"cpes": [
"cpe:/a:redhat:advanced_virtualization:8::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "qemu-kvm",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat OpenStack Platform 13 (Queens)",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "qemu-kvm-rhev",
"defaultStatus": "unknown",
"cpes": [
"cpe:/a:redhat:openstack:13"
]
},
{
"product": "Extra Packages for Enterprise Linux",
"vendor": "Fedora",
"collectionURL": "https://packages.fedoraproject.org/",
"packageName": "qemu",
"defaultStatus": "unaffected"
},
{
"product": "Fedora",
"vendor": "Fedora",
"collectionURL": "https://packages.fedoraproject.org/",
"packageName": "qemu",
"defaultStatus": "affected"
}
]Related
nessus
nessus
EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-3389)
2024-01-16 00:00:00
QEMU < 8.1.0-rc2 DOS
2023-08-10 00:00:00
EulerOS Virtualization 2.11.1 : qemu (EulerOS-SA-2023-3371)
2024-01-16 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-3371)
2023-12-14 00:00:00
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-3389)
2023-12-14 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2023:3234-1)
2024-03-04 00:00:00
osv
osv
CVE-2023-3301
2023-09-13 17:15:10
Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2023-11-14 00:00:00
qemu-8.0.3-1.1 on GA media
2024-06-15 00:00:00
cvelist
cvelist
CVE-2023-3301 Triggerable assertion due to race condition in hot-unplug
2023-09-13 16:09:36
redhatcve
redhatcve
CVE-2023-3301
2023-08-01 13:19:43
nvd
nvd
CVE-2023-3301
2023-09-13 17:15:10
vulnrichment
vulnrichment
CVE-2023-3301 Triggerable assertion due to race condition in hot-unplug
2023-09-13 16:09:36
cbl_mariner
cbl_mariner
CVE-2023-3301 affecting package qemu for versions less than 8.2.0-1
2024-03-19 17:21:46
veracode
veracode
Denial Of Service (DoS)
2023-08-05 03:34:22
debiancve
debiancve
CVE-2023-3301
2023-09-13 17:15:10
prion
prion
Sql injection
2023-09-13 17:15:00
ubuntucve
ubuntucve
CVE-2023-3301
2023-09-13 00:00:00
almalinux
almalinux
oraclelinux
oraclelinux
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
2023-11-18 00:00:00
qemu security update
2023-09-22 00:00:00
qemu security update
2023-09-22 00:00:00
redhat
redhat
redos
redos
ROS-20240606-01
2024-06-06 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2024-01-08 00:00:00
QEMU regression
2024-06-06 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
CVSS3
5.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
AI Score
5.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2023-3301