CVE-2020-35505 — MEDIUM (4.4)

Q: How severe is CVE-2020-35505?

CVE-2020-35505 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-35505?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Debian Debian Linux.

Vulnerability Description

A NULL pointer dereference flaw was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0. This issue occurs while handling the 'Information Transfer' command. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.

CVSS Score

4.4

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qemu	Qemu	< 6.0.0
Debian	Debian Linux	10.0

Related Weaknesses (CWE)

CWE-476

References

http://www.openwall.com/lists/oss-security/2021/04/16/3Mailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1909769Issue TrackingPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20210713-0006/Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/04/16/3Mailing ListPatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2021/04/16/3Mailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1909769Issue TrackingPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20210713-0006/Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/04/16/3Mailing ListPatchThird Party Advisory

FAQ

What is CVE-2020-35505?

CVE-2020-35505 is a vulnerability with a CVSS score of 4.4 (MEDIUM). A NULL pointer dereference flaw was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0. This issue occurs while handling the 'Information Transfer' command. This fl...

How severe is CVE-2020-35505?

CVE-2020-35505 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-35505?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Debian Debian Linux.