CVE-2024-6519
HIGHQEMU - Use After Free
Title source: llmDescription
A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape.
Scores
CVSS v3
8.2
EPSS
0.0001
EPSS Percentile
3.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Classification
CWE
CWE-416
Status
published
Affected Products (1)
qemu/qemu
Timeline
Published
Oct 21, 2024
Tracked Since
Feb 18, 2026