Lucene search

GoogleOSV:CVE-2023-4135

HistoryAug 04, 2023 - 2:15 p.m.

CVE-2023-4135

2023-08-0414:15:12

Google

osv.dev

cve-2023-4135

flaw

qemu

memory read

validation

offset

host heap pointer

data copying

arbitrary heap memory

buffer

software

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

16.1%

JSON

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

CPENameOperatorVersion
qemueq8.1.0-rc1
qemueq8.1.0-rc3
qemueq8.1.0-rc0
qemueq8.1.0-rc4
qemueq8.1.0-rc2
qemueq8.0.0

Name	Operator	Version
qemu	eq	8.1.0-rc1
qemu	eq	8.1.0-rc3
qemu	eq	8.1.0-rc0
qemu	eq	8.1.0-rc4
qemu	eq	8.1.0-rc2
qemu	eq	8.0.0

References

access.redhat.com/security/cve/CVE-2023-4135

bugzilla.redhat.com/show_bug.cgi?id=2229101

security.netapp.com/advisory/ntap-20230915-0012/

www.zerodayinitiative.com/advisories/ZDI-CAN-21521

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

16.1%

JSON

Related for OSV:CVE-2023-4135