“Virtual Environment Neglected Operations Manipulation” or Venom, is a new vulnerability that could allow a hacker to infiltrate potentially every machine on a data center’s network, leaving millions of virtual machines vulnerable to attack, if they run QEMU…
Venom can allow attackers to overload one of the data structures used for communication by the faulty driver for the floppy disk controller driver emulator known as a hypervisor with too much data. This potentially allows attackers to crash the QEMU hypervisor, gain control of the physical computer and all virtual machines running on it, and possibly even access the network to which the physical computer is connected.
Here is a link to the CVE.
Other popular hypervisors are not impacted, like VMWare, Microsoft, etc.
