Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-7211

Опубликовано: 30 дек. 2019
Источник: redhat
CVSS3: 3.8

Описание

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.

A potential directory traversal issue was found in the tftp server of the SLiRP user-mode networking implementation used by QEMU. It could occur on a Windows host, as it allows the use of both forward ('/') and backward slash('') tokens as separators in a file path. A user able to access the tftp server could use this flaw to access undue files by using relative paths.

Отчет

This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default. This issue does not affect the versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8, Red Hat OpenStack, Red Hat Virtualization and Red Hat Enterprise Linux Advanced Virtualization 8.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kvmNot affected
Red Hat Enterprise Linux 5xenNot affected
Red Hat Enterprise Linux 6qemu-kvmNot affected
Red Hat Enterprise Linux 7qemu-kvmNot affected
Red Hat Enterprise Linux 7qemu-kvm-maNot affected
Red Hat Enterprise Linux 7qemu-kvm-rhevNot affected
Red Hat Enterprise Linux 7slirp4netnsNot affected
Red Hat Enterprise Linux 8container-tools:1.0/slirp4netnsNot affected
Red Hat Enterprise Linux 8container-tools:rhel8/slirp4netnsNot affected
Red Hat Enterprise Linux 8virt:rhel/qemu-kvmNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-22
https://bugzilla.redhat.com/show_bug.cgi?id=1792130QEMU: Slirp: potential directory traversal using relative paths via tftp server on Windows host

3.8 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-7211

CVSS3: 7.5
ubuntu
около 6 лет назад

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.

nvd логотип

CVE-2020-7211

CVSS3: 7.5
nvd
около 6 лет назад

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.

msrc логотип

CVE-2020-7211

CVSS3: 7.5
msrc
больше 5 лет назад

tftp.c in libslirp 4.1.0 as used in QEMU 4.2.0 does not prevent ..\ directory traversal on Windows.

debian логотип

CVE-2020-7211

CVSS3: 7.5
debian
около 6 лет назад

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ ...

github логотип

GHSA-g6ww-98w5-h2gm

github
больше 3 лет назад

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.

3.8 Low

CVSS3