VDB
DEBIAN-CVE-2021-20203
DEBIAN-CVE-2021-20203
PUBLISHED
CVSS 3.200000047683716 LOW
An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.
Risk Scores
CVSS v3.1
3.200000047683716
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | qemu | 1:5.2+dfsg-11+deb11u1, *, 1:5.2+dfsg-11+deb11u1 |
| Debian:14 | qemu | 0, 0, 0 |
| Debian:13 | qemu | 0, 0, 0 |
| Debian:12 | qemu | 0, 0, 0 |
Timeline
- Feb 25, 2021 CVE Published
- Apr 28, 2026 CVE Updated