CVE-2011-3147

Опубликовано: 22 апр. 2019

Источник: nvd

CVSS3: 2.8

CVSS3: 8.6

CVSS2: 5

EPSS Низкий

Описание

Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem.

Ссылки

http://bazaar.launchpad.net/~hudson-openstack/nova/trunk/revision/1604
Patch
Third Party Advisory
http://bazaar.launchpad.net/~hudson-openstack/nova/trunk/revision/1604
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*

Версия от 2010.1 (включая) до 2012.1 (исключая)

EPSS

Процентиль: 40%

0.00182

Низкий

2.8 Low

CVSS3

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2011-3147

CVSS3: 8.6

ubuntu

почти 7 лет назад

Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem.

CVE-2011-3147

CVSS3: 8.6

debian

почти 7 лет назад

Versions of nova before 2012.1 could expose hypervisor host files to a ...

GHSA-hqfx-4x4w-vmwp

CVSS3: 2.8

github

почти 4 года назад

Openstack nova qcow format could expose host filesystem information

EPSS

Процентиль: 40%

0.00182

Низкий

2.8 Low

CVSS3

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200