CVE-2015-3456

Severity CVSS v4.0:

Pending analysis

Type:

CWE-119 Buffer Errors

Publication date:

13/05/2015

Last modified:

12/04/2025

Description

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

Impact

Vector 2.0

AV:A/AC:L/Au:S/C:C/I:C/A:C CVSS v2.0 Severity and Metrics:

Base Score: 7.70 HIGH
Vector: AV:A/AC:L/Au:S/C:C/I:C/A:C

Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Authentication (Au): Single
Confidentiality (C): Complete
Integrity (I): Complete
Availability (A): Complete

Base Score 2.0

7.70

Severity 2.0

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:qemu:qemu::::::::		2.3.0 (including)
cpe:2.3:a:redhat:enterprise_virtualization:3.0:::::::*
cpe:2.3:a:redhat:openstack:4.0:::::::*
cpe:2.3:a:redhat:openstack:5.0:::::::*
cpe:2.3:a:redhat:openstack:6.0:::::::*
cpe:2.3:a:redhat:openstack:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux:5:::::::*
cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
cpe:2.3:o:xen:xen:4.5.0:::::::*

To consult the complete list of CPE names with products and versions, see this page

CPE	From	Up to
cpe:2.3:a:qemu:qemu::::::::		2.3.0 (including)
cpe:2.3:a:redhat:enterprise_virtualization:3.0:::::::*
cpe:2.3:a:redhat:openstack:4.0:::::::*
cpe:2.3:a:redhat:openstack:5.0:::::::*
cpe:2.3:a:redhat:openstack:6.0:::::::*
cpe:2.3:a:redhat:openstack:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux:5:::::::*
cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
cpe:2.3:o:xen:xen:4.5.0:::::::*

CVE-2015-3456

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools