Vulnerabilities > CVE-2020-25085 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_continue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHC_BLKSIZE case.

Vulnerable Configurations

Part Description Count
Application
Qemu
1
OS
Debian
2

Common Weakness Enumeration (CWE)