CVE-2020-35503

Advisory lineage Upstream: 0 Downstream: 14

Downstream

DEBIAN-CVE-2020-35503 OPENSUSE-SU-2021:1202-1 OPENSUSE-SU-2021:2789-1 OPENSUSE-SU-2021:2858-1 OPENSUSE-SU-2021:3614-1 OPENSUSE-SU-2024:11907-1

Modified

Published: 02 Jun 2021, 13:22

Last modified:04 Aug 2024, 17:02

Vulnerability Summary

Overall Risk (default)

low

24/100

CVSS Score

6 MEDIUM

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Jun 2021, 13:22

Published

Vulnerability first disclosed

04 Aug 2024, 17:02

Last Modified

Vulnerability information updated

Description

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasas_command_cancelled() callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.

CVSS Metrics

v3.1•MEDIUM•Score: 6CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 0.02%• Percentile: 7%

Techniques & Countermeasures

CWE-476•NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

fedoraproject•fedora
33
qemu•qemu
≤ 6.0.0