Microvirt Memu vulnerabilities
3 known vulnerabilities affecting microvirt/memu.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2019-14514P2CRITICALCVSS 9.8fixed in 7.0.22020-02-11
CVE-2019-14514 [CRITICAL] CWE-78 CVE-2019-14514: An issue was discovered in Microvirt MEmu all versions prior to 7.0.2. A guest Android operating sys
An issue was discovered in Microvirt MEmu all versions prior to 7.0.2. A guest Android operating system inside the MEmu emulator contains a /system/bin/systemd binary that is run with root privileges on startup (this is unrelated to Red Hat's systemd init program, and is a closed-source proprietary tool that seems to be developed by Microvirt). Thi
nvd
CVE-2019-25568P3HIGHCVSS 7.8≤ 6.0.72026-03-21
CVE-2019-25568 [HIGH] CWE-306 CVE-2019-25568: Memu Play 6.0.7 contains an insecure file permissions vulnerability that allows low-privilege users
Memu Play 6.0.7 contains an insecure file permissions vulnerability that allows low-privilege users to escalate privileges by replacing the MemuService.exe executable. Attackers can rename and overwrite MemuService.exe in the installation directory with a malicious executable, which executes with system-level privileges when the service restarts after
nvd
CVE-2018-20621P3HIGHCVSS 7.8v6.0.62019-03-13
CVE-2018-20621 [HIGH] CWE-732 CVE-2018-20621: An issue was discovered in Microvirt MEmu 6.0.6. The MemuService.exe service binary is vulnerable to
An issue was discovered in Microvirt MEmu 6.0.6. The MemuService.exe service binary is vulnerable to local privilege escalation through binary planting due to insecure permissions set at install time. This allows code to be run as NT AUTHORITY/SYSTEM.
nvd