The vulnerability of the sd_wp_addr component of the emulation software for hardware devices on other platforms, related to reading data beyond the buffer’s acceptable limits, allows a malicious actor to cause a service failure.

The vulnerability of the sdwpaddr component of the hardware emulation software for other platforms supported by QEMU lies in its ability to read data from beyond the allowed buffer size. Exploiting this vulnerability can allow an attacker to cause service failures...

Denial Of Service (DoS)

qemu is vulnerable to denial of service DoS. The vulenrability exists through an out-of-bounds read during the sdchiwrite operation in sdwpaddr of hw/sd/sd.c...

CVE-2020-13253

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

CVE-2020-13253

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

CVE-2020-13253

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

CVE-2020-13253

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

PT-2020-6480 · Qemu +4 · Qemu +4

Name of the Vulnerable Software and Affected Versions: QEMU version 4.2.0 Description: The issue is related to an out-of-bounds read in the sd wp addr component of QEMU, specifically in the hw/sd/sd.c file. This occurs during sdhci write operations when an unvalidated address is used. A guest OS...