CVE-2024-3447

MEDIUM Year: 2024
CVSS v3 Score
6.0
Medium
Weakness Type
CWE-122
View all →

Vulnerability Description

A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

Related Vulnerabilities

CVE-2020-14310

MEDIUM
CVSS:6.0(Medium)

There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buf...

CWE-1222020

CVE-2020-14311

MEDIUM
CVSS:6.0(Medium)

There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leadi...

CWE-1222020

CVE-2020-1711

MEDIUM
CVSS:6.0(Medium)

An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a ...

CWE-1222020

CVE-2024-22453

MEDIUM
CVSS:6.0(Medium)

Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulnerability. A local high privileged attacker could potentially exploit this vulnerability to write to otherwise unauthorized memory.

CWE-1222024

CVE-2019-10126

MEDIUM
CVSS:5.9(Medium)

A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly othe...

CWE-1222019

CVE-2020-25664

MEDIUM
CVSS:6.1(Medium)

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-pri...

CWE-1222020