CVE Vulnerability

CVE-2020-35505

A NULL pointer dereference flaw was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0. This issue occurs while handling the 'Information Transfer' command. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.

2.1 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Scope

4.4 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
http://www.openwall.com/lists/oss-security/2021/04/16/3 Mailing List Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/04/16/3 Mailing List Patch
https://bugzilla.redhat.com/show_bug.cgi?id=1909769 Issue Tracking Patch
https://security.netapp.com/advisory/ntap-20210713-0006/ Third Party Advisory
https://security.gentoo.org/glsa/202208-27 Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html Mailing List Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
cpe:2.3:a:qemu:qemu:6.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:qemu:qemu:6.0.0:rc1:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Information

Published : 2021-05-28 11:15

Updated : 2022-09-22 09:03

NVD link : CVE-2020-35505

Mitre link : CVE-2020-35505

Products Affected
No products.
CWE
CWE-476