ide_atapi_cmd_reply_end in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated.
http://www.openwall.com/lists/oss-security/2021/01/18/2
https://lists.debian.org/debian-lts-announce/2021/02/msg00024.html
https://lists.nongnu.org/archive/html/qemu-devel/2020-11/msg04685.html
Source: MITRE
Published: 2021-01-26
Updated: 2021-03-15
Type: CWE-125
Base Score: 3.3
Vector: AV:L/AC:M/Au:N/C:P/I:N/A:P
Impact Score: 4.9
Exploitability Score: 3.4
Severity: LOW
Base Score: 3.9
Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L
Impact Score: 2.7
Exploitability Score: 0.8
Severity: LOW