CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-2680

This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.6%

CVSS Severity

CVSS v3 Score 7.5

References

https://access.redhat.com/security/cve/CVE-2023-2680
https://bugzilla.redhat.com/show_bug.cgi?id=2203387
https://security.netapp.com/advisory/ntap-20231116-0001/
https://access.redhat.com/security/cve/CVE-2023-2680
https://bugzilla.redhat.com/show_bug.cgi?id=2203387
https://security.netapp.com/advisory/ntap-20231116-0001/

Products affected by CVE-2023-2680

Qemu » Qemu » Version: N/A

cpe:2.3:a:qemu:qemu:-
Redhat » Enterprise Linux » Version: 9.0

cpe:2.3:o:redhat:enterprise_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2680

Products

Pricing

Contact Us