CVE-2025-64324

Опубликовано: 18 нояб. 2025

Источник: nvd

CVSS3: 7.7

EPSS Низкий

Описание

KubeVirt is a virtual machine management add-on for Kubernetes. The hostDisk feature in KubeVirt allows mounting a host file or directory owned by the user with UID 107 into a VM. However, prior to version 1.6.1 and 1.7.0, the implementation of this feature and more specifically the DiskOrCreate option (which creates a file if it doesn't exist) has a logic bug that allows an attacker to read and write arbitrary files owned by more privileged users on the host system. Versions 1.6.1 and 1.7.0 fix the issue.

Ссылки

https://github.com/kubevirt/kubevirt/commit/00d03e43e3bf03e563136695a4732b65ed42d764
Patch
https://github.com/kubevirt/kubevirt/commit/ff3b69b08b6b9c8d08d23735ca8d82455f790a69
Patch
https://github.com/kubevirt/kubevirt/pull/15037
Issue Tracking
https://github.com/kubevirt/kubevirt/security/advisories/GHSA-46xp-26xh-hpqh
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*

Версия до 1.6.1 (исключая)

cpe:2.3:a:kubevirt:kubevirt:1.7.0:alpha0:*:*:*:kubernetes:*:*

cpe:2.3:a:kubevirt:kubevirt:1.7.0:beta0:*:*:*:kubernetes:*:*

EPSS

Процентиль: 1%

0.00008

Низкий

7.7 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

CVE-2025-64324

msrc

3 месяца назад

KubeVirt Vulnerable to Arbitrary Host File Read and Write

GHSA-46xp-26xh-hpqh

CVSS3: 7.7

github