CVE-2023-40360

Published: Aug 14, 2023
Updated: Aug 25, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-40360" target="_blank" rel="noopener"> CVE-2023-40360
Severity: Medium
Exploit:

QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.