Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-10761

Опубликовано: 09 июн. 2020
Источник: nvd
CVSS3: 5
CVSS2: 4
EPSS Низкий

Описание

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Версия до 5.0.1 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*
Конфигурация 3
cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
Конфигурация 4

Одно из

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

EPSS

Процентиль: 74%
0.00841
Низкий

5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-617
CWE-617

Связанные уязвимости

ubuntu логотип

CVE-2020-10761

CVSS3: 5
ubuntu
больше 5 лет назад

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

redhat логотип

CVE-2020-10761

CVSS3: 5
redhat
больше 5 лет назад

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

msrc логотип

CVE-2020-10761

CVSS3: 5
msrc
больше 5 лет назад

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

debian логотип

CVE-2020-10761

CVSS3: 5
debian
больше 5 лет назад

An assertion failure issue was found in the Network Block Device(NBD) ...

github логотип

GHSA-qm9j-3g67-35f8

CVSS3: 5
github
больше 3 лет назад

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

EPSS

Процентиль: 74%
0.00841
Низкий

5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-617
CWE-617