VDB
CVE-2021-3611
CVE-2021-3611
PUBLISHED
Es existiert eine Schwachstelle in QEMU. Der Fehler besteht aufgrund eines Stapelüberlaufs, wenn ein Nutzer einen KVM-Gast mit aktivem intel-hda-Gerät startet. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand auszulösen.
EPSS 0.03% · 8.8th percentile
Risk Scores
EPSS Score
0.03%
8.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Gentoo | Gentoo Linux | |
| Ubuntu | Ubuntu Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| Oracle | Oracle Linux | |
| Open Source | Open Source QEMU |
Exploit Intelligence
- https://gitlab.com/qemu-project/qemu/-/issues/542 (nist-nvd)
- https://sourceware.org/bugzilla/show_bug.cgi?id=29255%20 (circl)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38347.yara (github-yara)
- CVE-2025-38219.yara (github-yara)
- CVE-2025-38219.yara (github-yara)
…and 208 more exploits
Timeline
- Jun 20, 2021 CVE Published
- May 12, 2022 EPSS Score
- Jun 30, 2022 EPSS Score
- Aug 19, 2022 EPSS Score
- Oct 8, 2022 EPSS Score
- Nov 26, 2022 EPSS Score
- Jan 14, 2023 EPSS Score
- Mar 4, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 23, 2023 EPSS Score
- Jun 11, 2023 EPSS Score
- Jul 30, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-1115.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1115 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1973784 advisory
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28435 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009193.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009185.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009200.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009211.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009213.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009225.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-July/009229.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-August/009241.html advisory
- https://inthewild.io/vuln/CVE-2021-3611 advisory
- https://security.gentoo.org/glsa/202208-27 advisory
- https://access.redhat.com/errata/RHSA-2022:7967 advisory
- https://linux.oracle.com/errata/ELSA-2022-7967.html advisory
- https://ubuntu.com/security/notices/USN-6567-1 advisory
- https://ubuntu.com/security/notices/USN-6567-2 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-February/020313.html advisory