Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-2693
HistoryJun 17, 2012 - 3:41 a.m.

CVE-2012-2693

2012-06-1703:41:00
CWE-264
[email protected]
web.nvd.nist.gov
35
4
libvirt
usb devices
virtual machines
vendor and product id
security vulnerability
local access

6 Medium

AI Score

Confidence

Low

3.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices.

Social References

More

Related

openvas 16
nessus 8
veracode 1
centos 2
cvelist 1
redhat 2
oraclelinux 2
prion 1
debiancve 1
ubuntucve 1
fedora 4
openvas
openvas
CentOS Update for libvirt CESA-2012:0748 centos6
2012-07-30 00:00:00
CentOS Update for libvirt CESA-2013:0127 centos5
2013-01-21 00:00:00
Oracle: Security Advisory (ELSA-2013-0127)
2015-10-06 00:00:00
nessus
nessus
Scientific Linux Security Update : libvirt on SL6.x i386/x86_64 (20120620)
2012-08-01 00:00:00
CentOS 6 : libvirt (CESA-2012:0748)
2012-07-11 00:00:00
CentOS 5 : libvirt (CESA-2013:0127)
2013-01-17 00:00:00
veracode
veracode
Unauthorized Access
2019-01-15 08:52:14
centos
centos
libvirt security update
2013-01-09 19:22:09
libvirt security update
2012-07-10 17:21:16
cvelist
cvelist
CVE-2012-2693
2012-06-17 01:00:00
redhat
redhat
(RHSA-2013:0127) Low: libvirt security and bug fix update
2013-01-08 00:00:00
(RHSA-2012:0748) Low: libvirt security, bug fix, and enhancement update
2012-06-20 00:00:00
oraclelinux
oraclelinux
libvirt security, bug fix, and enhancement update
2012-06-27 00:00:00
libvirt security and bug fix update
2013-01-11 00:00:00
prion
prion
Design/Logic Flaw
2012-06-17 03:41:00
debiancve
debiancve
CVE-2012-2693
2012-06-17 03:41:00
ubuntucve
ubuntucve
CVE-2012-2693
2012-06-17 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: libvirt-0.9.11.5-3.fc17
2012-09-04 22:56:31
[SECURITY] Fedora 17 Update: libvirt-0.9.11.6-1.fc17
2012-10-15 23:29:57
[SECURITY] Fedora 17 Update: libvirt-0.9.11.8-2.fc17
2013-01-03 07:24:39

6 Medium

AI Score

Confidence

Low

3.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for CVE-2012-2693
openvas16nessus8veracode1centos2cvelist1redhat2oraclelinux2prion1debiancve1ubuntucve1fedora4