CVE-2025-54566
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-25
Last updated on: 2025-12-16
Assigner: MITRE
Description
Description
hw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| qemu | qemu | to 10.0.3 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-642 | The product stores security-critical state information about its users, or the product itself, in a location that is accessible to unauthorized actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a migration state inconsistency in the hw/pci/pcie_sriov.c component of QEMU versions up to 10.0.3. It is related to a previously known issue identified as CVE-2024-26327.
How can this vulnerability impact me? :
The vulnerability has a CVSS base score of 4.2, indicating a medium severity. It can lead to limited impact on integrity and availability, meaning it might cause some unauthorized modification or disruption of service during migration processes in QEMU environments.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70