You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2023 0664
About this tag
The tag cve 2023 0664 covers a local privilege escalation vulnerability in the QEMU Guest Agent for Windows. This flaw allows an unprivileged user inside a Windows virtual machine to gain SYSTEM privileges by manipulating the QEMU Guest Agent installer's repair custom actions. The vulnerability was fixed upstream in QEMU 8.0.0-rc0 with targeted installer patches. Discussions on WindowsForum.com focus on the mechanics of the exploit, the patch details, and the responsibilities of guest administrators and virtualization stack maintainers in applying the fix. The tag is relevant for IT professionals managing Windows VMs with QEMU and for security researchers tracking hypervisor-related vulnerabilities.
A privilege‑escalation vulnerability in the QEMU Guest Agent for Windows — tracked as CVE‑2023‑0664 — allows a local, unprivileged user inside a Windows virtual machine to manipulate the QEMU Guest Agent installer’s repair custom actions and obtain SYSTEM privileges inside the guest; the issue...