Lucene search
RedhatCVELIST:CVE-2020-35506HistoryMay 28, 2021 - 10:20 a.m.
CVE-2020-35506
2021-05-2810:20:55
CWE-416
redhat
www.cve.org
A use-after-free vulnerability was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0 during the handling of the ‘Information Transfer’ command (CMD_TI). This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service or potential code execution with the privileges of the QEMU process.
CNA Affected
[
{
"product": "QEMU",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "qemu 6.0.0"
}
]
}
]Related
alpinelinux
alpinelinux
CVE-2020-35506
2021-05-28 11:15:07
veracode
veracode
Denial Of Service
2021-08-12 15:21:36
osv
osv
CVE-2020-35506
2021-05-28 11:15:07
cve
cve
CVE-2020-35506
2021-05-28 11:15:07
cbl_mariner
cbl_mariner
CVE-2020-35506 affecting package qemu-kvm 4.2.0-48
2021-12-17 20:09:46
debiancve
debiancve
CVE-2020-35506
2021-05-28 11:15:07
prion
prion
Design/Logic Flaw
2021-05-28 11:15:00
nvd
nvd
CVE-2020-35506
2021-05-28 11:15:07
redhatcve
redhatcve
CVE-2020-35506
2020-12-28 14:33:46
ubuntucve
ubuntucve
CVE-2020-35506
2021-05-28 00:00:00
suse
suse
Security update for qemu (moderate)
2021-08-27 00:00:00
Security update for qemu (moderate)
2021-08-20 00:00:00
Security update for qemu (important)
2021-11-04 00:00:00
nessus
nessus
openSUSE 15 Security Update : qemu (openSUSE-SU-2021:2858-1)
2021-08-28 00:00:00
SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2021:2789-1)
2021-08-21 00:00:00
SUSE SLES12 Security Update : qemu (SUSE-SU-2021:2813-1)
2021-08-24 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:2789-1)
2021-08-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2813-1)
2021-08-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:3575-1)
2021-10-29 00:00:00
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2022-08-14 00:00:00