CVE-2022-35414

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions QEMU versions prior to 7.0.0

Description The issue in QEMU's softmmu/physmem.c file can lead to an uninitialized read on the translate fail path, resulting in an io readx or io writex crash. A third party notes that this might not be considered a security bug according to the Non-virtualization Use Case in the qemu.org reference. The vulnerability is related to the use of an uninitialized variable in the address space translate for iotlb() function, which could allow an attacker to cause a denial of service or execute arbitrary code.

Recommendations For QEMU versions prior to 7.0.0, consider updating to a version that includes the fix for this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

ALT-PU-2022-3083

ALT-PU-2023-1830

ALT-PU-2023-1869

AZL-10110

AZL-35161

BDU:2022-04558

CVE-2022-35414

DLA-3099-1

OESA-2022-1791

OPENSUSE-SU-2022_3594-1

OPENSUSE-SU-2022_3660-1

OPENSUSE-SU-2022_3768-1

OPENSUSE-SU-2022_3795-1

OPENSUSE-SU-2024:12209-1

SUSE-SU-2022:3594-1

SUSE-SU-2022:3660-1

SUSE-SU-2022:3768-1

SUSE-SU-2022:3795-1

SUSE-SU-2023:0761-1

Affected Products

Alt Linux

Astra Linux

Debian

Qemu

Suse

CVE-2022-35414

Weakness Enumeration

Related Identifiers

Affected Products

References · 72