Описание
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:2.8+dfsg-3ubuntu2.1 |
| bionic | released | 1:2.8+dfsg-3ubuntu2.1 |
| cosmic | released | 1:2.8+dfsg-3ubuntu2.1 |
| devel | released | 1:2.8+dfsg-3ubuntu2.1 |
| disco | released | 1:2.8+dfsg-3ubuntu2.1 |
| eoan | released | 1:2.8+dfsg-3ubuntu2.1 |
| esm-infra-legacy/trusty | released | 2.0.0+dfsg-2ubuntu1.33 |
| esm-infra/bionic | released | 1:2.8+dfsg-3ubuntu2.1 |
| esm-infra/focal | released | 1:2.8+dfsg-3ubuntu2.1 |
| esm-infra/xenial | released | 1:2.5+dfsg-5ubuntu10.11 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE |
Показывать по
Ссылки на источники
EPSS
9 Critical
CVSS2
7.6 High
CVSS3
Связанные уязвимости
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host.
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host.
Qemu before version 2.9 is vulnerable to an improper link following wh ...
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host.
EPSS
9 Critical
CVSS2
7.6 High
CVSS3