{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T14:47:21.805","vulnerabilities":[{"cve":{"id":"CVE-2024-3447","sourceIdentifier":"patrick@puiterwijk.org","published":"2024-11-14T12:15:17.743","lastModified":"2026-05-12T12:16:57.757","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of  `s->fifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition."},{"lang":"es","value":"Se encontró un desbordamiento de búfer basado en montón en la emulación de dispositivo SDHCI de QEMU. El error se activa cuando tanto `s->data_count` como el tamaño de `s->fifo_buffer` se establecen en 0x200, lo que genera un acceso fuera de los límites. Un invitado malintencionado podría usar esta falla para bloquear el proceso QEMU en el host, lo que genera una condición de denegación de servicio."}],"metrics":{"cvssMetricV31":[{"source":"patrick@puiterwijk.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.5,"impactScore":4.0}]},"weaknesses":[{"source":"patrick@puiterwijk.org","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*","versionEndExcluding":"7.2.11","matchCriteriaId":"0EAD89F2-2AEA-4655-B072-E12C2AD69711"},{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.2.3","matchCriteriaId":"59D5C13B-B7C8-4057-94E6-D5B29B0C745B"},{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:9.0.0:-:*:*:*:*:*:*","matchCriteriaId":"53B020E1-1339-4E3B-8CC3-7108309DF2F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:9.0.0:rc0:*:*:*:*:*:*","matchCriteriaId":"5E7620C7-95CD-4451-A485-69CF3752627B"},{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:9.0.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F8EBBE5A-0A6F-4F35-AA50-CA81B15F6BDC"},{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:9.0.0:rc2:*:*:*:*:*:*","matchCriteriaId":"45846E0D-C683-4DAF-AE17-32CD8EB283F3"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"4AFE5CAF-ACA7-4F82-BEC1-69562D75E66E"}]}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2024-3447","source":"patrick@puiterwijk.org","tags":["Third Party Advisory"]},{"url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58813","source":"patrick@puiterwijk.org","tags":["Exploit","Issue Tracking"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2274123","source":"patrick@puiterwijk.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://patchew.org/QEMU/20240404085549.16987-1-philmd@linaro.org/","source":"patrick@puiterwijk.org","tags":["Broken Link"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250425-0005/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/html/ssa-577017.html","source":"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e"}]}}]}