Out-of-Bounds Access Vulnerability in Qemu 3.0.0's lsi_do_msgin Function

Out-of-Bounds Access Vulnerability in Qemu 3.0.0's lsi_do_msgin Function

CVE-2018-18849 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value.

Learn more about our Web Application Penetration Testing UK.