How severe is CVE-2021-20181?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2021-20181?

This is classified as CWE-367, which is a common weakness in software security.

CVE-2021-20181

HIGH Year: 2021

CVSS v3 Score

7.5

High

CVSS v2 Score

6.9

Medium

Weakness Type

CWE-367

View all →

Vulnerability Description

A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.

CVE-2019-7347

HIGH

CVSS:7.5(High)

A Time-of-check Time-of-use (TOCTOU) Race Condition exists in ZoneMinder through 1.32.3 as a session remains active for an authenticated user even after deletion from the users table. This allows a no...

CWE-3672019

CVE-2020-14674

HIGH

CVSS:7.5(High)

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult t...

CWE-3672020

CVE-2020-14675

HIGH

CVSS:7.5(High)

CWE-3672020

CVE-2020-14677

HIGH

CVSS:7.5(High)

CWE-3672020

CVE-2021-22043

HIGH

CVSS:7.5(High)

VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way temporary files are handled. A malicious actor with access to settingsd, may exploit this issue to escala...

CWE-3672021

CVE-2021-31422

HIGH

CVSS:7.5(High)

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code ...

CWE-3672021

CVE-2021-20181

Vulnerability Description

Related Vulnerabilities

CVE-2019-7347

CVE-2020-14674

CVE-2020-14675

CVE-2020-14677

CVE-2021-22043

CVE-2021-31422