Denial of Service Vulnerability in QEMU's PVRDMA Command Handling

Denial of Service Vulnerability in QEMU's PVRDMA Command Handling

CVE-2018-20125 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a denial of service (NULL pointer dereference or excessive memory allocation) in create_cq_ring or create_qp_rings.

Learn more about our Web Application Penetration Testing UK.