CVE-2024-7409

A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during…

redhat·CWE-662·Published 2024-08-05

CVSS

—

EPSS

0.01

KEV

Exploits

Vendor statements (11)

cve.orgen

216 chars

A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.

NVDes

268 chars

Se encontró una falla en el servidor QEMU NBD. Esta vulnerabilidad permite un ataque de denegación de servicio (DoS) a través de una sincronización incorrecta durante el cierre del socket cuando un cliente mantiene un socket abierto mientras el servidor se desconecta.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.0	Primary	cve.org	7.5	—	—	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3.0	Primary	cve.org	7.5	—	—	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3.0	Secondary	NVD	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H