Vulnerabilities > CVE-2020-25742 - NULL Pointer Dereference vulnerability in Qemu

047910
CVSS 3.2 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
LOW
local
low complexity
qemu
CWE-476

Summary

pci_change_irq_level in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pci_get_bus() might not return a valid pointer.

Vulnerable Configurations

Part Description Count
Application
Qemu
335

Common Weakness Enumeration (CWE)