EPSS
Percentile
17.2%
qemu is vulnerable to denial of service (DoS). The vulnerability exists through a stack-based buffer over-read hw/usb/hcd-ohci.c in QEMU 5.0.0 has via values obtained from the host controller driver allows an attacker to crash the application.
hw/usb/hcd-ohci.c
git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2020-25624
lists.nongnu.org/archive/html/qemu-devel/2020-09/msg05492.html
security.netapp.com/advisory/ntap-20201210-0005/