CVE-2021-3750

Name: CVE-2021-3750
Creator: NVD / NIST
Published: 2022-05-02T19:15:08.343+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.2/10EPSS 0.52%

Last modified Jun 17, 2026

CVE-2021-3750 is a high-severity vulnerability rated 8.2/10 on the CVSS scale. A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. EPSS estimates a 0.52% chance of exploitation in the next 30 days.

Description

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

Metrics

CVSS 3.1

8.2/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

EPSS Probability

0.52%

40.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Qemu	Qemu	< 7.0.0
Redhat	Enterprise Linux	8.0

References

https://bugzilla.redhat.com/show_bug.cgi?id=1999073Issue Tracking, Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/issues/541Exploit, Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/issues/556Third Party Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20220624-0003/Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1999073Issue Tracking, Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/issues/541Exploit, Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/issues/556Third Party Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20220624-0003/Third Party Advisory

Timeline

Published: May 2, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2021-3750?

How severe is CVE-2021-3750?

CVE-2021-3750 has a CVSS score of 8.2/10 (HIGH severity). The EPSS model estimates a 0.52% probability of exploitation in the next 30 days.

How do I fix CVE-2021-3750?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-3750?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST