Qemu · Qemu · CVE-2020-35517
**Name of the Vulnerable Software and Affected Versions**
qemu (affected versions not specified)
**Description**
A flaw was found in the virtio-fs shared file system daemon of qemu, which is related to insecure privilege management. This issue allows a privileged guest user to create a device special file in the shared directory, enabling read and write access to host devices. The exploitation of this flaw may allow an attacker to access confidential data, compromise data integrity, and cause a denial of service using a specially crafted file.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.