Описание
libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.2.16-2ubuntu9 |
| esm-infra-legacy/trusty | released | 1.2.2-0ubuntu13.1.16 |
| lucid | ignored | end of life |
| precise | not-affected | code not present |
| trusty | released | 1.2.2-0ubuntu13.1.16 |
| trusty/esm | released | 1.2.2-0ubuntu13.1.16 |
| upstream | released | 1.2.12 |
| utopic | ignored | end of life |
| vivid | not-affected | 1.2.12-0ubuntu14.2 |
| wily | not-affected | 1.2.16-2ubuntu9 |
Показывать по
EPSS
3.5 Low
CVSS2
Связанные уязвимости
libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.
libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.
libvirt before 1.2.12 allow remote authenticated users to obtain the V ...
libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.
EPSS
3.5 Low
CVSS2