CVE-2025-54567

July 24, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-54567
Type cve
Published 2025-07-25T00:00:00.000Z
Modified 2025-07-25T02:47:18.774Z

Product Information

Vendor QEMU
Product QEMU
Version 10.0.0

CVSS Information

Base Score 4.2 (MEDIUM)
Attack Vector CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

AI Analysis

AI Description A vulnerability in QEMU’s handling of the VF Enable bit in the SR-IOV module could allow limited impact on integrity due to incorrect write masking, similar to CVE-2024-26327.
AI Severity Medium
AI Vendor QEMU
AI Product QEMU
AI Version 10.0.0

Affected Products

  • QEMU QEMU 10.0.0

Additional Information

CWE List CWE-684
Source mitre

Description

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.