Lucene search

K

PRIOn knowledge basePRION:CVE-2010-2239

HistoryAug 19, 2010 - 6:00 p.m.

Design/Logic Flaw

2010-08-1918:00:00

PRIOn knowledge base

www.prio-n.com

7

6.8 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.4%

Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors.

CPENameOperatorVersion
libvirteq0.6.0
libvirteq0.7.3
libvirteq0.8.1
libvirteq0.7.0
libvirteq0.6.1
libvirteq0.8.0
libvirteq0.6.5
libvirteq0.7.1
libvirteq0.6.2
libvirteq0.7.6

Rows per page:

1-10 of 171

References

libvirt.org/news.html

lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

ubuntu.com/usn/usn-1008-1

ubuntu.com/usn/usn-1008-2

ubuntu.com/usn/usn-1008-3

www.redhat.com/support/errata/RHSA-2010-0615.html

www.vupen.com/english/advisories/2010/2062

www.vupen.com/english/advisories/2010/2763

bugzilla.redhat.com/show_bug.cgi?id=607812

lists.fedoraproject.org/pipermail/package-announce/2010-July/044520.html

lists.fedoraproject.org/pipermail/package-announce/2010-July/044579.html

6.8 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.4%

Related for PRION:CVE-2010-2239

cvelist1 ubuntucve1 cve1 veracode1 debiancve1 nessus13 openvas15 redhat1 oraclelinux1 centos1 securityvulns2 fedora2 ubuntu4