Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 20.6% and no vendor patch available.
Memory Corruption
Buffer Overflow
RCE
Qemu
Junos Space
+16
NVD
CVSS 2.0
7.5
EPSS
20.6%