Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-6457
HistoryJan 24, 2014 - 6:55 p.m.

CVE-2013-6457

2014-01-2418:55:04
CWE-264
[email protected]
web.nvd.nist.gov
30
cve-2013-6457
libxldomaingetnumaparameters
libvirt
denial of service
execute arbitrary code
nvd

5.2 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:S/C:P/I:P/A:P

8.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibly execute arbitrary code via an inactive domain to the virsh numatune command.

Affected configurations

NVD
Node
redhatlibvirtRange1.2.0
OR
redhatlibvirtMatch0.0.1
OR
redhatlibvirtMatch0.0.2
OR
redhatlibvirtMatch0.0.3
OR
redhatlibvirtMatch0.0.4
OR
redhatlibvirtMatch0.0.5
OR
redhatlibvirtMatch0.0.6
OR
redhatlibvirtMatch0.1.0
OR
redhatlibvirtMatch0.1.1
OR
redhatlibvirtMatch0.1.3
OR
redhatlibvirtMatch0.1.4
OR
redhatlibvirtMatch0.1.5
OR
redhatlibvirtMatch0.1.6
OR
redhatlibvirtMatch0.1.7
OR
redhatlibvirtMatch0.1.8
OR
redhatlibvirtMatch0.1.9
OR
redhatlibvirtMatch0.2.0
OR
redhatlibvirtMatch0.2.1
OR
redhatlibvirtMatch0.2.2
OR
redhatlibvirtMatch0.2.3
OR
redhatlibvirtMatch0.3.0
OR
redhatlibvirtMatch0.3.1
OR
redhatlibvirtMatch0.3.2
OR
redhatlibvirtMatch0.3.3
OR
redhatlibvirtMatch0.4.0
OR
redhatlibvirtMatch0.4.1
OR
redhatlibvirtMatch0.4.2
OR
redhatlibvirtMatch0.4.3
OR
redhatlibvirtMatch0.4.4
OR
redhatlibvirtMatch0.4.5
OR
redhatlibvirtMatch0.4.6
OR
redhatlibvirtMatch0.5.0
OR
redhatlibvirtMatch0.5.1
OR
redhatlibvirtMatch0.6.0
OR
redhatlibvirtMatch0.6.1
OR
redhatlibvirtMatch0.6.2
OR
redhatlibvirtMatch0.6.3
OR
redhatlibvirtMatch0.6.4
OR
redhatlibvirtMatch0.6.5
OR
redhatlibvirtMatch0.7.0
OR
redhatlibvirtMatch0.7.1
OR
redhatlibvirtMatch0.7.2
OR
redhatlibvirtMatch0.7.3
OR
redhatlibvirtMatch0.7.4
OR
redhatlibvirtMatch0.7.5
OR
redhatlibvirtMatch0.7.6
OR
redhatlibvirtMatch0.7.7
OR
redhatlibvirtMatch0.8.0
OR
redhatlibvirtMatch0.8.1
OR
redhatlibvirtMatch0.8.2
OR
redhatlibvirtMatch0.8.3
OR
redhatlibvirtMatch0.8.4
OR
redhatlibvirtMatch0.8.5
OR
redhatlibvirtMatch0.8.6
OR
redhatlibvirtMatch0.8.7
OR
redhatlibvirtMatch0.8.8
OR
redhatlibvirtMatch0.9.0
OR
redhatlibvirtMatch0.9.1
OR
redhatlibvirtMatch0.9.2
OR
redhatlibvirtMatch0.9.3
OR
redhatlibvirtMatch0.9.4
OR
redhatlibvirtMatch0.9.5
OR
redhatlibvirtMatch0.9.6
OR
redhatlibvirtMatch0.9.6.1
OR
redhatlibvirtMatch0.9.6.2
OR
redhatlibvirtMatch0.9.6.3
OR
redhatlibvirtMatch0.9.7
OR
redhatlibvirtMatch0.9.8
OR
redhatlibvirtMatch0.9.9
OR
redhatlibvirtMatch0.9.10
OR
redhatlibvirtMatch0.9.11
OR
redhatlibvirtMatch0.9.11.1
OR
redhatlibvirtMatch0.9.11.2
OR
redhatlibvirtMatch0.9.11.3
OR
redhatlibvirtMatch0.9.11.4
OR
redhatlibvirtMatch0.9.11.5
OR
redhatlibvirtMatch0.9.11.6
OR
redhatlibvirtMatch0.9.11.7
OR
redhatlibvirtMatch0.9.11.8
OR
redhatlibvirtMatch0.9.12
OR
redhatlibvirtMatch0.9.13
OR
redhatlibvirtMatch0.10.0
OR
redhatlibvirtMatch0.10.1
OR
redhatlibvirtMatch0.10.2
OR
redhatlibvirtMatch0.10.2.1
OR
redhatlibvirtMatch0.10.2.2
OR
redhatlibvirtMatch0.10.2.3
OR
redhatlibvirtMatch0.10.2.4
OR
redhatlibvirtMatch0.10.2.5
OR
redhatlibvirtMatch0.10.2.6
OR
redhatlibvirtMatch0.10.2.7
OR
redhatlibvirtMatch0.10.2.8
OR
redhatlibvirtMatch1.0.0
OR
redhatlibvirtMatch1.0.1
OR
redhatlibvirtMatch1.0.2
OR
redhatlibvirtMatch1.0.3
OR
redhatlibvirtMatch1.0.4
OR
redhatlibvirtMatch1.0.5
OR
redhatlibvirtMatch1.0.5.1
OR
redhatlibvirtMatch1.0.5.2
OR
redhatlibvirtMatch1.0.5.3
OR
redhatlibvirtMatch1.0.5.4
OR
redhatlibvirtMatch1.0.5.5
OR
redhatlibvirtMatch1.0.5.6
OR
redhatlibvirtMatch1.0.6
OR
redhatlibvirtMatch1.1.0
OR
redhatlibvirtMatch1.1.1
OR
redhatlibvirtMatch1.1.2
OR
redhatlibvirtMatch1.1.3
OR
redhatlibvirtMatch1.1.4

Related

veracode 1
nvd 1
cvelist 1
ubuntucve 1
prion 1
debiancve 1
nessus 3
openvas 3
ubuntu 1
altlinux 1
f5 2
gentoo 1
osv 15
veracode
veracode
Denial Of Service (DoS)
2018-08-14 10:17:03
nvd
nvd
CVE-2013-6457
2014-01-24 18:55:04
cvelist
cvelist
CVE-2013-6457
2014-01-24 18:00:00
ubuntucve
ubuntucve
CVE-2013-6457
2014-01-24 00:00:00
prion
prion
Command injection
2014-01-24 18:55:00
debiancve
debiancve
CVE-2013-6457
2014-01-24 18:55:04
nessus
nessus
openSUSE Security Update : libvirt (openSUSE-SU-2014:0268-1)
2014-06-13 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.10 : libvirt vulnerabilities (USN-2093-1)
2014-01-31 00:00:00
GLSA-201412-04 : libvirt: Multiple vulnerabilities
2014-12-09 00:00:00
openvas
openvas
Ubuntu Update for libvirt USN-2093-1
2014-02-03 00:00:00
Ubuntu: Security Advisory (USN-2093-1)
2014-02-03 00:00:00
Gentoo Security Advisory GLSA 201412-04
2015-09-29 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2014-01-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libvirt version 1.2.2-alt1
2014-03-05 00:00:00
f5
f5
SOL16117 - Multiple libvirt vulnerabilities
2015-02-12 00:00:00
K16117 : Multiple libvirt vulnerabilities
2015-02-12 00:00:00
gentoo
gentoo
libvirt: Multiple vulnerabilities
2014-12-08 00:00:00
osv
osv
CVE-2023-2700
2023-05-15 22:15:12
CVE-2021-3631
2022-03-02 23:15:08
CVE-2020-10703
2020-06-02 13:15:10

5.2 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:S/C:P/I:P/A:P

8.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2013-6457
veracode1nvd1cvelist1ubuntucve1prion1debiancve1nessus3openvas3ubuntu1altlinux1f52gentoo1osv15