CVE-2020-35505
Advisory lineage Upstream: 0 Downstream: 15
Modified
Published: 28 May 2021, 10:20
Last modified:04 Aug 2024, 17:02
Vulnerability Summary
Overall Risk (default)
low
18/100 CVSS Score
4.4 MEDIUM
v3.1 (nvd)
EPSS Score
0.08% LOW
0% probability +0.06%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
28 May 2021, 10:20
Published
Vulnerability first disclosed
04 Aug 2024, 17:02
Last Modified
Vulnerability information updated
Description
A NULL pointer dereference flaw was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0. This issue occurs while handling the 'Information Transfer' command. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
CVSS Metrics
- v3.1•MEDIUM•Score: 4.4CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
- v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:N/I:N/A:P
EPSS Trends
Current EPSS score: 0.08%• Percentile: 23%
Techniques & Countermeasures
- CWE-476•NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Systems
- debian•debian_linux
10.0
- qemu•qemu
< 6.0.0 | 6.0.0:rc1 | 6.0.0:rc2
References (6)
- http://www.openwall.com/lists/oss-security/2021/04/16/3
- https://www.openwall.com/lists/oss-security/2021/04/16/3
- https://bugzilla.redhat.com/show_bug.cgi?id=1909769
- https://security.netapp.com/advisory/ntap-20210713-0006/
- https://security.gentoo.org/glsa/202208-27
- https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html