Vulnerabilities > CVE-2020-24165

047910
CVSS 8.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
qemu
debian
NVD
Published: 2023-08-28
Updated: 2024-08-04

Summary

An issue was discovered in TCG Accelerator in QEMU 4.2.0, allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service (DoS). Note: This is disputed as a bug and not a valid security issue by multiple third parties.

Vulnerable Configurations

Part Description Count
Application
Qemu
1
OS
Debian
1

References