Out-of-Bounds Access Vulnerability in Qemu 3.0.0's lsi_do_msgin Function
CVE-2018-18849 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:N/A:P
In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value.
Learn more about our Web Application Penetration Testing UK.