What the vulnerability does

01Description

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition.

Key dates

02Disclosure timeline

March 29, 2022 CVE published
August 2, 2024 Record updated