CVE-2017-9524

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The qemu-nbd server in QEMU (aka Quick Emulator), when built with the Network Block Device (NBD) Server support, allows remote attackers to cause a denial of service (segmentation fault and server crash) by leveraging failure to ensure that all initialization occurs before talking to a client in the nbd_negotiate function.

References

http://www.debian.org/security/2017/dsa-3925

http://www.openwall.com/lists/oss-security/2017/06/12/1

http://www.securityfocus.com/bid/99011

https://access.redhat.com/errata/RHSA-2017:1681

https://access.redhat.com/errata/RHSA-2017:1682

https://access.redhat.com/errata/RHSA-2017:2408

https://lists.gnu.org/archive/html/qemu-devel/2017-05/msg06240.html

https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg02321.html

Details

Source: MITRE

Published: 2017-07-06

Updated: 2020-10-29

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:* versions up to 2.9.1 (inclusive)

Configuration 2

OR

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Tenable Plugins

View all (19 total)

IDNameProductFamilySeverity
147128EulerOS Virtualization for ARM 64 3.0.6.0 : qemu-kvm (EulerOS-SA-2021-1527)NessusHuawei Local Security Checks
medium
144726EulerOS Virtualization for ARM 64 3.0.2.0 : qemu-kvm (EulerOS-SA-2021-1046)NessusHuawei Local Security Checks
high
141665EulerOS Virtualization 3.0.2.2 : qemu-kvm (EulerOS-SA-2020-2200)NessusHuawei Local Security Checks
medium
138009EulerOS Virtualization 3.0.6.0 : qemu-kvm (EulerOS-SA-2020-1790)NessusHuawei Local Security Checks
critical
126673Oracle Linux 7 : qemu (ELSA-2019-4713) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)NessusOracle Linux Local Security Checks
high
105929Fedora 27 : xen (2017-908f063bb6)NessusFedora Local Security Checks
high
104429SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:2936-1)NessusSuSE Local Security Checks
high
104424openSUSE Security Update : qemu (openSUSE-2017-1249)NessusSuSE Local Security Checks
high
103372Ubuntu 14.04 LTS / 16.04 LTS / 17.04 : qemu regression (USN-3414-2)NessusUbuntu Local Security Checks
critical
103217Ubuntu 14.04 LTS / 16.04 LTS / 17.04 : qemu vulnerabilities (USN-3414-1)NessusUbuntu Local Security Checks
critical
102938Fedora 26 : xen (2017-b7f1197c23)NessusFedora Local Security Checks
high
102244EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2017-1157)NessusHuawei Local Security Checks
high
102243EulerOS 2.0 SP1 : qemu-kvm (EulerOS-SA-2017-1156)NessusHuawei Local Security Checks
high
102209Debian DSA-3925-1 : qemu - security updateNessusDebian Local Security Checks
high
101360RHEL 7 : qemu-kvm-rhev (RHSA-2017:1682)NessusRed Hat Local Security Checks
high
101258Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20170705)NessusScientific Linux Local Security Checks
high
101255RHEL 7 : qemu-kvm (RHSA-2017:1681)NessusRed Hat Local Security Checks
high
101251Oracle Linux 7 : qemu-kvm (ELSA-2017-1681)NessusOracle Linux Local Security Checks
high
101237CentOS 7 : qemu-kvm (CESA-2017:1681)NessusCentOS Local Security Checks
high