Lucene search
K

4 matches found

NVD
NVD
added 2018/08/09 7:29 p.m.38 views

CVE-2018-10908

It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to consume unbounded amounts of memory of CPU time, causing a denial of service condition that could...

7.1CVSS6.3AI score0.01185EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/08/09 7:0 p.m.49 views

CVE-2018-10908

It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to consume unbounded amounts of memory of CPU time, causing a denial of service condition that could...

6.5CVSS6.4AI score0.01185EPSS
Exploits0References4
CVE
CVE
added 2018/08/09 7:0 p.m.89 views

CVE-2018-10908

CVE-2018-10908 affects vdsm prior to 4.20.37. The issue arises when vdsm invokes qemu-img on untrusted inputs without limiting resources, enabling an attacker to cause unbounded memory/CPU usage and a denial of service affecting other host users. Documented impact: local access required; CVSS vec...

7.1CVSS6.2AI score0.01185EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2018/08/09 1:50 a.m.42 views

CVE-2018-10908

It was found that vdsm would invoke qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to consume unbounded amounts of memory of CPU time, causing a denial of service condition that could potentially impact...

7.1CVSS3.9AI score0.01185EPSS
Exploits0References2
Rows per page
Query Builder