Vulnerabilities > CVE-2020-25743 - NULL Pointer Dereference vulnerability in multiple products

047910
CVSS 3.2 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
LOW
local
low complexity
qemu
redhat
CWE-476

Summary

hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an ide_cancel_dma_sync call.

Vulnerable Configurations

Part Description Count
Application
Qemu
335
Application
Redhat
1
OS
Redhat
3

Common Weakness Enumeration (CWE)