[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247768

 
 

909

 
 

194555

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2017-2615Date: (C)2018-07-03   (M)2023-12-22


Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 9.1CVSS Score : 9.0
Exploit Score: 2.3Exploit Score: 8.0
Impact Score: 6.0Impact Score: 10.0
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: NETWORKAccess Vector: NETWORK
Attack Complexity: LOWAccess Complexity: LOW
Privileges Required: HIGHAuthentication: SINGLE
User Interaction: NONEConfidentiality: COMPLETE
Scope: CHANGEDIntegrity: COMPLETE
Confidentiality: HIGHAvailability: COMPLETE
Integrity: HIGH 
Availability: HIGH 
  
Reference:
SECTRACK-1037804
BID-95990
GLSA-201702-27
GLSA-201702-28
RHSA-2017:0309
RHSA-2017:0328
RHSA-2017:0329
RHSA-2017:0330
RHSA-2017:0331
RHSA-2017:0332
RHSA-2017:0333
RHSA-2017:0334
RHSA-2017:0344
RHSA-2017:0350
RHSA-2017:0396
RHSA-2017:0454
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html
http://www.openwall.com/lists/oss-security/2017/02/01/6
https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg00015.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2615
https://support.citrix.com/article/CTX220771

CWE    1
CWE-787
OVAL    23
oval:org.secpod.oval:def:89044725
oval:org.secpod.oval:def:1800084
oval:org.secpod.oval:def:204453
oval:org.secpod.oval:def:89044679
...

© SecPod Technologies