CVE-2023-0664

Опубликовано: 20 фев. 2023

Источник: redhat

CVSS3: 7.8

EPSS Низкий

Описание

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system.

Отчет

This flaw has been rated as having a security impact of Moderate. The flaw affects Windows VMs using virtio-win drivers with QEMU Guest Agent installed in the guest. This is not a VM escape vulnerability, meaning that it does not allow a malicious user to break out of the guest.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	virtio-win	Out of support scope
Red Hat Enterprise Linux 8	virtio-win	Will not fix
Red Hat Enterprise Linux 9	virtio-win	Fixed	RHBA-2023:2451	09.05.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-250->CWE-269

https://bugzilla.redhat.com/show_bug.cgi?id=2167423QEMU: local privilege escalation via the QEMU Guest Agent on Windows

EPSS

Процентиль: 2%

0.00016

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2023-0664

CVSS3: 7.8

ubuntu

около 2 лет назад

CVE-2023-0664

CVSS3: 7.8

nvd

около 2 лет назад

CVE-2023-0664

CVSS3: 7.8

debian

около 2 лет назад

A flaw was found in the QEMU Guest Agent service for Windows. A local ...

GHSA-mvgg-p48p-h9jc

CVSS3: 7.8

github

около 2 лет назад

BDU:2024-08942

CVSS3: 7.8

fstec

больше 2 лет назад

Уязвимость службы Guest Agent Service эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю повысить свои привилегии в системе

EPSS

Процентиль: 2%

0.00016

Низкий

7.8 High

CVSS3