CVE-2021-4207|A flaw was found in the QXL display......

A flaw was found in the QXL display...... CVE-2021-4207

4.6 AV AC AU C I A

发布： 2022-04-29

修订： 2023-11-07

CWE-120
CWE-362
os
CVE
overflow
vulnerability
memoryleak
kernel

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use this flaw to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有5条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

A flaw was found in the QXL display...... CVE-2021-4207

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单查看更多>

A flaw was found in the QXL display...... CVE-2021-4207

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单 查看更多>

相关漏洞清单查看更多>