CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:S/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%
Use-after-free vulnerability in the virtio-pci implementation in Qemu 1.4.0 through 1.6.0 allows local users to cause a denial of service (daemon crash) by “hot-unplugging” a virtio device.
Vendor | Product | Version | CPE |
---|---|---|---|
qemu | qemu | 1.4.0 | cpe:2.3:a:qemu:qemu:1.4.0:*:*:*:*:*:*:* |
qemu | qemu | 1.4.1 | cpe:2.3:a:qemu:qemu:1.4.1:*:*:*:*:*:*:* |
qemu | qemu | 1.4.2 | cpe:2.3:a:qemu:qemu:1.4.2:*:*:*:*:*:*:* |
qemu | qemu | 1.5.0 | cpe:2.3:a:qemu:qemu:1.5.0:*:*:*:*:*:*:* |
qemu | qemu | 1.5.0 | cpe:2.3:a:qemu:qemu:1.5.0:rc1:*:*:*:*:*:* |
qemu | qemu | 1.5.0 | cpe:2.3:a:qemu:qemu:1.5.0:rc2:*:*:*:*:*:* |
qemu | qemu | 1.5.0 | cpe:2.3:a:qemu:qemu:1.5.0:rc3:*:*:*:*:*:* |
qemu | qemu | 1.5.1 | cpe:2.3:a:qemu:qemu:1.5.1:*:*:*:*:*:*:* |
qemu | qemu | 1.5.2 | cpe:2.3:a:qemu:qemu:1.5.2:*:*:*:*:*:*:* |
qemu | qemu | 1.5.3 | cpe:2.3:a:qemu:qemu:1.5.3:*:*:*:*:*:*:* |