Lucene search
HistoryApr 15, 2023 - 11:15 p.m.
CVE-2021-45464
kvmtool
out-of-bounds write
guest os
arbitrary code
host machine
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.8%
kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine.
Affected configurations
Node
kvmtool_projectkvmtoolMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| kvmtool_project | kvmtool | - | cpe:2.3:a:kvmtool_project:kvmtool:-:*:*:*:*:*:*:* |
References
Related
prion
prion
Cross site scripting
2023-04-15 23:15:00
ubuntucve
ubuntucve
CVE-2021-45464
2023-04-15 00:00:00
debiancve
debiancve
CVE-2021-45464
2022-02-22 21:09:06
cvelist
cvelist
CVE-2021-45464
2023-04-15 00:00:00
cve
cve
CVE-2021-45464
2023-04-15 23:15:13
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.8%
Related for NVD:CVE-2021-45464