Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-10183

Опубликовано: 03 июл. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.1
CVSS3: 3.2

Описание

Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments, thus leaking them to others users on the system via process listing. It was introduced recently in the virt-manager v2.2.0 release.

РелизСтатусПримечание
bionic

not-affected

code not present
cosmic

not-affected

code not present
devel

released

1:3.2.0-3
disco

not-affected

code not present
eoan

ignored

end of life
esm-apps/bionic

not-affected

code not present
esm-apps/focal

released

1:2.2.1-3ubuntu2.1
esm-apps/jammy

released

1:3.2.0-3
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 34%
0.00139
Низкий

2.1 Low

CVSS2

3.2 Low

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-10183

CVSS3: 2.8
redhat
больше 6 лет назад

Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments, thus leaking them to others users on the system via process listing. It was introduced recently in the virt-manager v2.2.0 release.

nvd логотип

CVE-2019-10183

CVSS3: 3.2
nvd
больше 6 лет назад

Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments, thus leaking them to others users on the system via process listing. It was introduced recently in the virt-manager v2.2.0 release.

debian логотип

CVE-2019-10183

CVSS3: 3.2
debian
больше 6 лет назад

Virt-install(1) utility used to provision new virtual machines has int ...

github логотип

GHSA-mjgr-85qm-mjv5

CVSS3: 3.3
github
больше 3 лет назад

Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments, thus leaking them to others users on the system via process listing. It was introduced recently in the virt-manager v2.2.0 release.

oracle-oval логотип

ELSA-2019-3464

oracle-oval
около 6 лет назад

ELSA-2019-3464: virt-manager security, bug fix, and enhancement update (LOW)

EPSS

Процентиль: 34%
0.00139
Низкий

2.1 Low

CVSS2

3.2 Low

CVSS3