Multiple CVEs Affecting Qemu's virtio-net Component

Multiple CVEs Affecting Qemu's virtio-net Component

First seen 18 Feb 2026, 11:17 UTC Api.Msrc.Microsoft 79% similarity 41.1

Article Content

Browse articles
ThreatCluster

Two vulnerabilities have been reported in Qemu's virtio-net component. CVE-2023-6693 involves a stack buffer overflow in the virtio_net_flush_tx() function, while CVE-2024-6505 addresses a queue index issue. Both vulnerabilities could potentially impact systems utilizing Qemu virtualization technology.

ThreatCluster AI

Timeline

2024-01-02
CVE-2023-6693 published
2024-07-05
CVE-2024-6505 published
2026-02-18
Information published about both CVEs

Community

Browse all →