How severe is CVE-2020-17380?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2020-17380?

This is classified as CWE-787, which is a common weakness in software security.

CVE-2020-17380

MEDIUM Year: 2020

CVSS v3 Score

6.3

Medium

CVSS v2 Score

4.6

Medium

Weakness Type

CWE-787

View all →

Vulnerability Description

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU process on the host.

CVE-2017-5044

MEDIUM

CVSS:6.3(Medium)

Heap buffer overflow in filter processing in Skia in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds...

CWE-7872017

CVE-2019-20692

MEDIUM

CVSS:6.3(Medium)

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.44, D6400 before 1.0.0.78, D7000v2 before 1.0.0.51, D8500 before 1...

CWE-7872019

CVE-2019-20740

MEDIUM

CVSS:6.3(Medium)

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.109, R7300 before 1.0.0.70, R8300 befo...

CWE-7872019

CVE-2019-8027

MEDIUM

CVSS:6.3(Medium)

Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and ear...

CWE-7872019

CVE-2021-35590

MEDIUM

CVSS:6.3(Medium)

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.33 and prior, 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and p...

CWE-7872021