CVE-2025-8860 (CNNVD-202509-3040)

UNKNOWN
中文标题:
QEMU 安全漏洞
英文标题:
A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes to register UEFI_VAR
CVSS分数: N/A
发布时间: 2025-09-05 00:00:00
漏洞类型: 其他
状态: PUBLISHED
数据质量分数: 0.40
数据版本: v3
漏洞描述
中文描述:

QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)个人开发者的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 QEMU存在安全漏洞,该漏洞源于攻击者可通过uefi-vars绕过访问限制,可能导致敏感信息泄露。

英文描述:

A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes to register UEFI_VARS_REG_BUFFER_SIZE, the .write callback `uefi_vars_write` is invoked. The function allocates a heap buffer without zeroing the memory, leaving the buffer filled with residual data from prior allocations. When the guest later reads from register UEFI_VARS_REG_PIO_BUFFER_TRANSFER, the .read callback `uefi_vars_read` returns leftover metadata or other sensitive process memory from the previously allocated buffer, leading to an information disclosure vulnerability.

CWE类型:
CWE-212
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
Red Hat Red Hat Enterprise Linux 10 - - - cpe:/o:redhat:enterprise_linux:10
Red Hat Red Hat Enterprise Linux 6 - - - cpe:/o:redhat:enterprise_linux:6
Red Hat Red Hat Enterprise Linux 7 - - - cpe:/o:redhat:enterprise_linux:7
Red Hat Red Hat Enterprise Linux 8 - - - cpe:/o:redhat:enterprise_linux:8
Red Hat Red Hat Enterprise Linux 8 Advanced Virtualization 8 - - cpe:/a:redhat:advanced_virtualization:8::el8
Red Hat Red Hat Enterprise Linux 9 - - - cpe:/o:redhat:enterprise_linux:9
Red Hat Red Hat OpenShift Container Platform 4 - - - cpe:/a:redhat:openshift:4
解决方案
中文解决方案:
NOT_EXTRACTED
英文解决方案:
(暂无数据)
临时解决方案:
NOT_EXTRACTED
参考链接
patrick@puiterwijk.org OTHER
nvd.nist.gov
访问
patrick@puiterwijk.org OTHER
nvd.nist.gov
访问
CVSS评分详情
暂无CVSS评分信息
时间信息
发布时间:
2025-09-05 00:00:00
修改时间:
2025-09-29 00:00:00
创建时间:
2025-11-11 16:00:12
更新时间:
2026-02-20 06:00:05
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CNNVD cnnvd_CNNVD-202509-3040 2025-11-11 15:12:56 2025-11-11 08:00:12
NVD nvd_CVE-2025-8860 2026-02-19 02:00:04 2026-02-18 22:00:03
CVE cve_CVE-2025-8860 2026-02-20 03:17:28 2026-02-19 22:00:01
版本与语言
当前版本: v3
主要语言: ZH
支持语言:
ZH EN
安全公告
暂无安全公告信息
变更历史
v3 CVE
2026-02-20 06:00:01
affected_products_count: 0 → 7; data_sources: ['cnnvd', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
  • affected_products_count: 0 -> 7
  • data_sources: ['cnnvd', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2 NVD
2026-02-19 06:00:03
title_en: QEMU 安全漏洞... → A flaw was found in QEMU in the uefi-vars virtual ...; description_en: QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)个人开... → A flaw was found in QEMU in the uefi-vars virtual ...; references_count: 0 → 2; data_sources: ['cnnvd'] → ['cnnvd', 'nvd']
查看详细变更
  • title_en: QEMU 安全漏洞... -> A flaw was found in QEMU in the uefi-vars virtual ...
  • description_en: QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)个人开... -> A flaw was found in QEMU in the uefi-vars virtual ...
  • references_count: 0 -> 2
  • data_sources: ['cnnvd'] -> ['cnnvd', 'nvd']