Vulnerability Details : CVE-2023-40360
Potential exploit
QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.
Products affected by CVE-2023-40360
- cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-40360
0.03%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-40360
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2023-40360
-
The product dereferences a pointer that it expects to be valid but is NULL.Assigned by: nvd@nist.gov (Primary)
References for CVE-2023-40360
-
https://gitlab.com/birkelund/qemu/-/commit/6c8f8456cb0b239812dee5211881426496da7b98
hw/nvme: fix null pointer access in directive receive (6c8f8456) · Commits · Klaus Jensen / QEMU · GitLabPatch
-
https://www.qemu.org/docs/master/system/security.html
Security — QEMU documentationVendor Advisory
-
https://gitlab.com/qemu-project/qemu/-/issues/1815
Null pointer access in nvme_directive_receive() (#1815) · Issues · QEMU / QEMU · GitLabExploit;Issue Tracking;Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20230915-0004/
CVE-2023-40360 QEMU Vulnerability in NetApp Products | NetApp Product SecurityThird Party Advisory
Jump to