CVE-2016-3710
Severity
8.8HIGH
EPSS
0.1%
top 77.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 11
Latest updateMay 13
Description
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0
Affected Packages12 packages
Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 15.10, 16.04, Enterprise Linux 7.2, 7.3, 7.4, 7.6, 7.5, 7.7
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-p6hq-65m2-r4jg: The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arb↗2022-05-13
CVEList▶
CVE-2016-3710: The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arb↗2016-05-11
OSV▶
CVE-2016-3710: The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arb↗2016-05-11
📋Vendor Advisories
3💬Community
3Bugzilla▶
CVE-2016-3710 xen: qemu: incorrect banked access bounds checking in vga module [fedora-all]↗2016-05-09
Bugzilla
▶