Out-of-Bounds Access Vulnerability in QEMU 4.2.0 via Crafted Address in MSI-X MMIO Operation

Out-of-Bounds Access Vulnerability in QEMU 4.2.0 via Crafted Address in MSI-X MMIO Operation

CVE-2020-13754 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation.

Learn more about our User Device Pen Test.