๐Ÿ” CVE Alert

CVE-2024-4467

HIGH 7.8

Qemu-kvm: 'qemu-img info' leads to host file read/write

CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th

A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process on the host to consume large amounts of memory or CPU time, leading to denial of service or read/write to an existing external file.

CWE CWE-787
Published Jul 2, 2024
Last Updated Feb 25, 2026
Stay Ahead of the Next One

Get instant alerts for

Be the first to know when new high vulnerabilities are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

Red Hat / Advanced Virtualization for RHEL 8.2.1
All versions affected
Red Hat / Advanced Virtualization for RHEL 8.4.0.EUS
All versions affected
Red Hat / Advanced Virtualization for RHEL 8.4.0.EUS
All versions affected
Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.6 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.8 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.8 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 9.2 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 10
All versions affected
Red Hat / Red Hat Enterprise Linux 6
All versions affected
Red Hat / Red Hat Enterprise Linux 7
All versions affected
Red Hat / Red Hat Enterprise Linux 7
All versions affected
Red Hat / Red Hat Enterprise Linux 8 Advanced Virtualization
All versions affected
Red Hat / Red Hat OpenShift Virtualization 4
All versions affected

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4276 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4277 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4278 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4372 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4373 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4374 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4420 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4724 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:4727 access.redhat.com: https://access.redhat.com/security/cve/CVE-2024-4467 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2278875 openwall.com: http://www.openwall.com/lists/oss-security/2024/07/23/2 security.netapp.com: https://security.netapp.com/advisory/ntap-20240822-0005/

Credits

Red Hat would like to thank Martin Kaesberger for reporting this issue.