Published: 04/05/2020 Updated: 07/11/2023

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.5 | Impact Score: 4 | Exploitability Score: 2

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of the QEMU version >= v5.0. Virtio-fs is meant to share a host file system directory with a guest via virtio-fs device. If the guest opens the maximum number of file descriptors under the shared directory, a denial of service may occur. This flaw allows a guest user/process to cause this denial of service on the host.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu

Debian Bug report logs - #959746 qemu: CVE-2020-10717 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 4 May 2020 19:48:02 UTC Severity: important Tags: security, upstream Found in version qemu/1 ...

CWE-770 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10717 https://www.openwall.com/lists/oss-security/2020/05/04/1 https://lists.gnu.org/archive/html/qemu-devel/2020-05/msg00143.html https://lists.gnu.org/archive/html/qemu-devel/2020-05/msg00141.html https://security.gentoo.org/glsa/202011-09 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959746 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-10717

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect