QEMU Use-After-Free Vulnerability in Virtio Block Device Hotplug Operations

QEMU Use-After-Free Vulnerability in Virtio Block Device Hotplug Operations

CVE-2014-3471 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

Use-after-free vulnerability in hw/pci/pcie.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU instance crash) via hotplug and hotunplug operations of Virtio block devices.

Learn more about our User Device Pen Test.