Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-3392

A use-after-free flaw was found in the MegaRAID emulator of QEMU. This issue occurs while processing SCSI I/O requests in the case of an error mptsas_free_request() that does not dequeue the request object 'req' from a pending requests queue. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. Versions between 2.10.0 and 5.2.0 are potentially affected.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.8%
CVSS Severity
CVSS v3 Score 3.2
CVSS v2 Score 2.1
Products affected by CVE-2021-3392
  • Qemu » Qemu » Version: 2.10.0
    cpe:2.3:a:qemu:qemu:2.10.0
  • Qemu » Qemu » Version: 2.10.1
    cpe:2.3:a:qemu:qemu:2.10.1
  • Qemu » Qemu » Version: 2.10.2
    cpe:2.3:a:qemu:qemu:2.10.2
  • Qemu » Qemu » Version: 2.11.0
    cpe:2.3:a:qemu:qemu:2.11.0
  • Qemu » Qemu » Version: 2.11.1
    cpe:2.3:a:qemu:qemu:2.11.1
  • Qemu » Qemu » Version: 2.11.2
    cpe:2.3:a:qemu:qemu:2.11.2
  • Qemu » Qemu » Version: 2.12.0
    cpe:2.3:a:qemu:qemu:2.12.0
  • Qemu » Qemu » Version: 2.12.1
    cpe:2.3:a:qemu:qemu:2.12.1
  • Qemu » Qemu » Version: 2.12.50
    cpe:2.3:a:qemu:qemu:2.12.50
  • Qemu » Qemu » Version: 2.17.2
    cpe:2.3:a:qemu:qemu:2.17.2
  • Qemu » Qemu » Version: 3.0.0
    cpe:2.3:a:qemu:qemu:3.0.0
  • Qemu » Qemu » Version: 3.0.1
    cpe:2.3:a:qemu:qemu:3.0.1
  • Qemu » Qemu » Version: 3.1
    cpe:2.3:a:qemu:qemu:3.1
  • Qemu » Qemu » Version: 3.1.0
    cpe:2.3:a:qemu:qemu:3.1.0
  • Qemu » Qemu » Version: 3.1.1
    cpe:2.3:a:qemu:qemu:3.1.1
  • Qemu » Qemu » Version: 3.1.1.1
    cpe:2.3:a:qemu:qemu:3.1.1.1
  • Qemu » Qemu » Version: 3.1.50
    cpe:2.3:a:qemu:qemu:3.1.50
  • Qemu » Qemu » Version: 4.0.0
    cpe:2.3:a:qemu:qemu:4.0.0
  • Qemu » Qemu » Version: 4.0.1
    cpe:2.3:a:qemu:qemu:4.0.1
  • Qemu » Qemu » Version: 4.1.0
    cpe:2.3:a:qemu:qemu:4.1.0
  • Qemu » Qemu » Version: 4.1.1
    cpe:2.3:a:qemu:qemu:4.1.1
  • Qemu » Qemu » Version: 4.2.0
    cpe:2.3:a:qemu:qemu:4.2.0
  • Qemu » Qemu » Version: 4.2.0-34
    cpe:2.3:a:qemu:qemu:4.2.0-34
  • Qemu » Qemu » Version: 4.2.1
    cpe:2.3:a:qemu:qemu:4.2.1
  • Qemu » Qemu » Version: 5.0
    cpe:2.3:a:qemu:qemu:5.0
  • Qemu » Qemu » Version: 5.0.0
    cpe:2.3:a:qemu:qemu:5.0.0
  • Qemu » Qemu » Version: 5.0.1
    cpe:2.3:a:qemu:qemu:5.0.1
  • Qemu » Qemu » Version: 5.1.0
    cpe:2.3:a:qemu:qemu:5.1.0
  • Qemu » Qemu » Version: 5.1.1
    cpe:2.3:a:qemu:qemu:5.1.1
  • Qemu » Qemu » Version: 5.2.0
    cpe:2.3:a:qemu:qemu:5.2.0
  • Debian » Debian Linux » Version: 10.0
    cpe:2.3:o:debian:debian_linux:10.0
  • Debian » Debian Linux » Version: 9.0
    cpe:2.3:o:debian:debian_linux:9.0
  • Fedoraproject » Fedora » Version: 33
    cpe:2.3:o:fedoraproject:fedora:33


Products
Pricing
Contact Us

Shodan ® - All rights reserved