Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-3851

Опубликовано: 04 нояб. 2010
Источник: nvd
CVSS2: 4.7
EPSS Низкий

Описание

libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted (1) qcow2, (2) VMDK, or (3) VDI header, related to lack of support for a disk format specifier.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:libguestfs:libguestfs:*:*:*:*:*:*:*:*
Версия до 1.5.22 (включая)
cpe:2.3:a:libguestfs:libguestfs:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.4:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.5:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.6:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.7:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.8:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.9:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.10:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.11:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.12:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.13:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.14:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.15:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.16:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.17:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.18:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.19:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.20:*:*:*:*:*:*:*
cpe:2.3:a:libguestfs:libguestfs:1.5.21:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:matthew_booth:virt-v2v:*:*:*:*:*:*:*:*
cpe:2.3:a:richard_jones:virt-inspector:*:*:*:*:*:*:*:*
Версия до 1.5.3 (включая)

EPSS

Процентиль: 26%
0.00088
Низкий

4.7 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

redhat логотип

CVE-2010-3851

redhat
больше 14 лет назад

libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted (1) qcow2, (2) VMDK, or (3) VDI header, related to lack of support for a disk format specifier.

github логотип

GHSA-vc83-g5p3-ggc5

github
около 3 лет назад

libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted (1) qcow2, (2) VMDK, or (3) VDI header, related to lack of support for a disk format specifier.

oracle-oval логотип

ELSA-2011-0586

oracle-oval
около 14 лет назад

ELSA-2011-0586: libguestfs security, bug fix, and enhancement update (LOW)

EPSS

Процентиль: 26%
0.00088
Низкий

4.7 Medium

CVSS2

Дефекты

CWE-200