The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from the information transfer buffer in non-DMA mode.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 10.0.19044.4651 |