CVE-2024-5156612.11.2024, 15:15The NVMe driver queue processing is vulernable to guest-induced infinite loops.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST6.5 MEDIUMNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:LfreebsdCNA------CISA-ADPADP6.5 MEDIUMNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:LCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 24%Common Weakness EnumerationCWE-1285 - Improper Validation of Specified Index, Position, or Offset in InputThe product receives input that is expected to specify an index, position, or offset into an indexable resource such as a buffer or file, but it does not validate or incorrectly validates that the specified index/position/offset has the required properties.Referenceshttps://security.freebsd.org/advisories/FreeBSD-SA-24:17.bhyve.aschttps://security.netapp.com/advisory/ntap-20250207-0008/