CVE-2023-6693

MEDIUM EPSS 24.7%
Published Jan 2, 20242y ago · Modified Jun 17, 20261w ago
5.3 CVSS 3.1
Medium
Find Similar
Published Jan 2, 2024 2y ago
Last Modified Jun 17, 2026 1w ago

Description

A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flush_tx function if guest features VIRTIO_NET_F_HASH_REPORT, VIRTIO_F_VERSION_1 and VIRTIO_NET_F_MRG_RXBUF are enabled. This could allow a malicious user to overwrite local variables allocated on the stack. Specifically, the `out_sg` variable could be used to read a part of process memory and send it to the wire, causing an information leak.

CVSS Details

Base Score
5.3
Exploitability
1.8
Impact
3.4
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity Low
Availability Low

Threat Intelligence

EPSS Exploit Probability
24.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 2

CWE-121
CWE-787 Out-of-bounds Write Memory Safety

Affected Products 5

VendorProductVersionRange
qemuqemu* <8.2.1
redhatenterprise_linux8.0any
redhatenterprise_linux8.0any
redhatenterprise_linux9.0any
fedoraprojectfedora39any

References 7

Remediation