Lucene search

K

PRIOn knowledge basePRION:CVE-2010-2238

HistoryAug 19, 2010 - 6:00 p.m.

Design/Logic Flaw

2010-08-1918:00:00

PRIOn knowledge base

www.prio-n.com

5

7.2 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.4%

Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors.

CPENameOperatorVersion
libvirteq0.7.3
libvirteq0.8.1
libvirteq0.8.0
libvirteq0.7.6
libvirteq0.7.4
libvirteq0.7.7
libvirteq0.7.5
libvirteq0.7.2
libvirteq0.8.2

References

libvirt.org/news.html

lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

ubuntu.com/usn/usn-1008-1

ubuntu.com/usn/usn-1008-2

ubuntu.com/usn/usn-1008-3

www.vupen.com/english/advisories/2010/2763

bugzilla.redhat.com/show_bug.cgi?id=607811

lists.fedoraproject.org/pipermail/package-announce/2010-July/044520.html

lists.fedoraproject.org/pipermail/package-announce/2010-July/044579.html

7.2 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.4%

Related for PRION:CVE-2010-2238

ubuntucve2 cve2 cvelist2 debiancve2 prion1 ubuntu5 openvas14 securityvulns3 nessus10 fedora2