CVE-2020-25084 Information

Description

QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_packet_map return value is not checked.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Reference

http://www.openwall.com/lists/oss-security/2020/09/16/5 https://lists.nongnu.org/archive/html/qemu-devel/2020-08/msg08050.html https://security.netapp.com/advisory/ntap-20201009-0005/

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction Required

HIGH

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

LOW

Base Severity

3.2