Browse all 18 CVE security advisories affecting QEMU. AI-powered Chinese analysis, POCs, and references for each vulnerability.
QEMU serves as a hypervisor for hardware virtualization, enabling operating systems to run on different architectures through binary translation and KVM acceleration. Historically, it has been susceptible to remote code execution vulnerabilities, particularly in emulated devices like the Cirrus VGA and Intel network cards, along with privilege escalation flaws through improper access controls. Notable security characteristics include its attack surface from emulated hardware components and guest-to-host escape vectors. While no major incidents have been widely documented, the 18 recorded CVEs highlight recurring issues in device emulation and memory management, requiring careful configuration and regular updates to mitigate risks.
This page lists every published CVE security advisory associated with QEMU. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.