{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-03T23:56:22.668","vulnerabilities":[{"cve":{"id":"CVE-2024-7730","sourceIdentifier":"patrick@puiterwijk.org","published":"2024-11-14T12:15:18.857","lastModified":"2025-08-05T18:26:29.673","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A heap buffer overflow was found in the virtio-snd device in QEMU. When reading input audio in the virtio-snd input callback, virtio_snd_pcm_in_cb, the function did not check whether the iov can fit the data buffer. This issue can trigger an out-of-bounds write if the size of the virtio queue element is equal to virtio_snd_pcm_status, which makes the available space for audio data zero."},{"lang":"es","value":"Se encontró un desbordamiento del búfer de montón en el dispositivo virtio-snd en QEMU. Al leer el audio de entrada en la devolución de llamada de entrada virtio-snd, virtio_snd_pcm_in_cb, la función no verificó si el iov puede caber en el búfer de datos. Este problema puede desencadenar una escritura fuera de los límites si el tamaño del elemento de cola virtio es igual a virtio_snd_pcm_status, lo que hace que el espacio disponible para los datos de audio sea cero."}],"metrics":{"cvssMetricV31":[{"source":"patrick@puiterwijk.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.4,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"patrick@puiterwijk.org","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*","versionEndExcluding":"9.1.0","matchCriteriaId":"FE556470-EB2B-4214-8692-9B71A13DD1A6"}]}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2024-7730","source":"patrick@puiterwijk.org","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304289","source":"patrick@puiterwijk.org","tags":["Issue Tracking","Third Party Advisory"]}]}}]}