Qemu
This hub aggregates every CVE we track for Qemu, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.
436
CVEs tracked
14
Critical
125
High
0
In CISA KEV
Severity distribution
MEDIUM256HIGH125LOW41CRITICAL14
Monthly trend
2
1
2
1
2
0
0
0
0
0
0
0
2
0
1
2
0
0
0
1
0
0
1
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Qemu.
- BDU:2026-06263Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании6.5
- CVE-2025-14876Qemu-kvm: unbounded allocation in virtio-crypto5.5
- CVE-2025-12464Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode6.2
- CVE-2025-11234Qemu-kvm: vnc websocket handshake use-after-free7.5
- BDU:2025-11394Уязвимость функции qxl_set_mode эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании6.0
- CVE-2025-54566hw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327.4.2
- CVE-2025-54567hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.4.2
- CVE-2024-7730Qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()7.4
- CVE-2024-3447Qemu: sdhci: heap buffer overflow in sdhci_write_dataport()6.0
- CVE-2024-6519Qemu: scsi: lsi53c895a: use-after-free local privilege escalation vulnerability8.2
- CVE-2024-8612Qemu-kvm: information leak in virtio devices3.8
- CVE-2024-8354Qemu-kvm: usb: assertion failure in usb_ep_get()5.5
- CVE-2024-7409Qemu: denial of service via improper synchronization in qemu nbd server during socket closure7.5
- CVE-2024-6505Qemu-kvm: virtio-net: queue index out-of-bounds access in software rss6.8
- CVE-2024-4467Qemu-kvm: 'qemu-img info' leads to host file read/write7.8
Product normalization is registry-driven with AI assist and human review. How it works