VYPR
Unrated severityNVD Advisory· Published Aug 26, 2014· Updated Jun 17, 2026

CVE-2014-5263

CVE-2014-5263

Description

vmstate_xhci_event in hw/usb/hcd-xhci.c in QEMU 1.6.0 does not terminate the list with the VMSTATE_END_OF_LIST macro, which allows attackers to cause a denial of service (out-of-bounds access, infinite loop, and memory corruption) and possibly gain privileges via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • QEMU/Qemu2 versions
    cpe:2.3:a:qemu:qemu:1.6.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:qemu:qemu:1.6.0:*:*:*:*:*:*:*
    • (no CPE)range: =1.6.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.