exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 22

BDU:2019-02852

почти 6 лет назад

Уязвимость функции virDomainSaveImageGetXMLDesc() библиотеки управления виртуализацией Libvirt, позволяющая нарушителю вызвать отказ в обслуживании, выполнить произвольный код или определить наличие и размер произвольных файлов

CVSS3: 7.4

EPSS: Низкий

CVE-2019-10161

почти 6 лет назад

It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.

CVSS3: 7.8

EPSS: Низкий

CVE-2019-10161

около 6 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2019-10161

почти 6 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2019-10161

почти 6 лет назад

It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would ...

CVSS3: 7.8

EPSS: Низкий

SUSE-SU-2019:1690-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:14100-1

около 6 лет назад

Security update for libvirt

EPSS: Низкий

GHSA-6cwp-pxj6-56c7

около 3 лет назад

CVSS3: 7.8

EPSS: Низкий

ELSA-2019-1578

около 6 лет назад

ELSA-2019-1578: libvirt security update (MODERATE)

EPSS: Низкий

SUSE-SU-2019:2227-2

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:2227-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:2105-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:1686-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:14097-1

около 6 лет назад

Security update for libvirt

EPSS: Низкий

openSUSE-SU-2019:1672-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:1637-1

около 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:1599-1

около 6 лет назад

Security update for libvirt

EPSS: Низкий

openSUSE-SU-2019:1753-1

почти 6 лет назад

Security update for libvirt

EPSS: Низкий

SUSE-SU-2019:1643-1

около 6 лет назад

Security update for libvirt

EPSS: Низкий

ELSA-2019-1580

почти 6 лет назад

ELSA-2019-1580: virt:rhel security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2019-02852 Уязвимость функции virDomainSaveImageGetXMLDesc() библиотеки управления виртуализацией Libvirt, позволяющая нарушителю вызвать отказ в обслуживании, выполнить произвольный код или определить наличие и размер произвольных файлов	CVSS3: 7.4	0% Низкий	почти 6 лет назад
CVE-2019-10161 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.	CVSS3: 7.8	0% Низкий	почти 6 лет назад
CVE-2019-10161 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.	CVSS3: 8.8	0% Низкий	около 6 лет назад
CVE-2019-10161 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.	CVSS3: 7.8	0% Низкий	почти 6 лет назад
CVE-2019-10161 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would ...	CVSS3: 7.8	0% Низкий	почти 6 лет назад
SUSE-SU-2019:1690-1 Security update for libvirt		0% Низкий	почти 6 лет назад
SUSE-SU-2019:14100-1 Security update for libvirt		0% Низкий	около 6 лет назад
GHSA-6cwp-pxj6-56c7 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.	CVSS3: 7.8	0% Низкий	около 3 лет назад
ELSA-2019-1578 ELSA-2019-1578: libvirt security update (MODERATE)			около 6 лет назад
SUSE-SU-2019:2227-2 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:2227-1 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:2105-1 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:1686-1 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:14097-1 Security update for libvirt			около 6 лет назад
openSUSE-SU-2019:1672-1 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:1637-1 Security update for libvirt			около 6 лет назад
SUSE-SU-2019:1599-1 Security update for libvirt			около 6 лет назад
openSUSE-SU-2019:1753-1 Security update for libvirt			почти 6 лет назад
SUSE-SU-2019:1643-1 Security update for libvirt			около 6 лет назад
ELSA-2019-1580 ELSA-2019-1580: virt:rhel security update (IMPORTANT)			почти 6 лет назад

Уязвимостей на страницу