CVE-2020-16092

LOW Year: 2020
CVSS v3 Score
3.8
Low
CVSS v2 Score
2.1
Low
Weakness Type
CWE-617
View all →

Vulnerability Description

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host, resulting in a denial of service condition in net_tx_pkt_add_raw_fragment in hw/net/net_tx_pkt.c.

Related Vulnerabilities

CVE-2018-17204

MEDIUM
CVSS:4.3(Medium)

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command...

CWE-6172018

CVE-2020-25723

LOW
CVSS:3.2(Low)

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged use...

CWE-6172020

CVE-2024-20152

MEDIUM
CVSS:4.4(Medium)

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privileg...

CWE-6172024

CVE-2025-31160

LOW
CVSS:2.9(Low)

atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and application exit) or possibly have unspecified other impact by running certain types of unprivileged pr...

CWE-6172025

CVE-2025-47229

LOW
CVSS:2.9(Low)

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service (var_set_leave_quiet assertion failure and application exit) via crafted input data, such as data that triggers a...

CWE-6172025

CVE-2017-8372

MEDIUM
CVSS:4.7(Medium)

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted...

CWE-6172017