0.001 Low
EPSS
Percentile
26.7%
The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from the information transfer buffer in non-DMA mode.
bugzilla.redhat.com/show_bug.cgi?id=1341931