Security Advisory

CVE-2021-3947

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-18 17:50:50

Last updated 2024-08-03 17:09:09

Assigner redhat

State PUBLISHED

Description

A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvme_changed_nslist() where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information.

← Browse all CVEs View on cve.org ↗