CVE-2020-25723

LOW Year: 2020
CVSS v3 Score
3.2
Low
CVSS v2 Score
2.1
Low
Weakness Type
CWE-617
View all →

Vulnerability Description

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host, resulting in a denial of service.

Related Vulnerabilities

CVE-2025-31160

LOW
CVSS:2.9(Low)

atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and application exit) or possibly have unspecified other impact by running certain types of unprivileged pr...

CWE-6172025

CVE-2025-47229

LOW
CVSS:2.9(Low)

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service (var_set_leave_quiet assertion failure and application exit) via crafted input data, such as data that triggers a...

CWE-6172025

CVE-2021-20286

LOW
CVSS:2.7(Low)

A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.

CWE-6172021

CVE-2020-16092

LOW
CVSS:3.8(Low)

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to...

CWE-6172020

CVE-2018-17204

MEDIUM
CVSS:4.3(Medium)

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command...

CWE-6172018

CVE-2024-20152

MEDIUM
CVSS:4.4(Medium)

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privileg...

CWE-6172024