Skip to main content
CVE-2016-9832 CRITICAL POC Act Now

PricewaterhouseCoopers (PwC) ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via (1) SAPGUI or (2) Internet. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE SAP Ace Advanced Business Application Programming
NVD
CVSS 3.0
9.9
EPSS
7.3%
CVE-2016-7116 MEDIUM This Month

Directory traversal vulnerability in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to access host files outside the export path via a .. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Qemu Debian Linux
NVD
CVSS 3.1
6.0
EPSS
0.9%
CVE-2016-7995 MEDIUM PATCH This Month

Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Qemu Leap
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-7994 MEDIUM PATCH This Month

Memory leak in the virtio_gpu_resource_create_2d function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Qemu Leap
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-7466 MEDIUM PATCH This Month

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Qemu Leap Openstack Virtualization
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-7422 MEDIUM PATCH This Month

The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash). Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Denial Of Service Buffer Overflow Qemu Leap Openstack +1
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-6836 MEDIUM PATCH This Month

The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host memory information by leveraging failure to. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Information Disclosure Qemu Debian Linux
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-6835 MEDIUM PATCH This Month

The vmxnet_tx_pkt_parse_headers function in hw/net/vmxnet_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (buffer over-read) by leveraging. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Qemu Virtualization Debian Linux
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-4964 MEDIUM PATCH This Month

The mptsas_fetch_requests function in hw/scsi/mptsas.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop, and CPU consumption or QEMU. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Qemu
NVD
CVSS 3.1
6.0
EPSS
0.1%
CVE-2016-7421 MEDIUM PATCH This Month

The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Qemu Debian Linux
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-6834 MEDIUM PATCH This Month

The net_tx_pkt_do_sw_fragmentation function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Denial Of Service Buffer Overflow Qemu Debian Linux
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-6888 MEDIUM PATCH This Month

Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Integer Overflow Denial Of Service Qemu Debian Linux Virtualization +1
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-7170 MEDIUM PATCH This Month

The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Buffer Overflow Qemu Debian Linux Leap
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-7157 MEDIUM PATCH This Month

The (1) mptsas_config_manufacturing_1 and (2) mptsas_config_ioc_0 functions in hw/scsi/mptconfig.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Qemu
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-7156 MEDIUM PATCH This Month

The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Qemu Debian Linux
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-7155 MEDIUM PATCH This Month

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Qemu Debian Linux
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-6833 MEDIUM PATCH This Month

Use-after-free vulnerability in the vmxnet3_io_bar0_write function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU instance. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Memory Corruption Denial Of Service Use After Free Qemu Debian Linux
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2016-6490 MEDIUM PATCH This Month

The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a zero. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Denial Of Service Buffer Overflow Qemu
NVD
CVSS 3.1
4.4
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy