Lucene search
K

32 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2019:1643-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.00549EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/16 12:0 a.m.35 views

GLSA-202003-18 : libvirt: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202003-18 libvirt: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details. Impact : A local privileged attacker could execute arbitrary...

8.8CVSS8.1AI score0.00549EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/10/22 12:0 a.m.61 views

Photon OS 3.0: Libvirt PHSA-2019-3.0-0032

An update of the libvirt package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0032. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130112;...

8.8CVSS8.5AI score0.00549EPSS
Exploits0References4
Amazon
Amazon
added 2019/08/23 12:0 a.m.100 views

Important: libvirt

Issue Overview: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2019-11091 Modern Intel microprocessors implement hardware-level micro-optimizations to...

8.8CVSS7.5AI score0.01553EPSS
Exploits0
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.105 views

libvirt security, bug fix, and enhancement update

4.5.0-23 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161 - api: disallow virDomainManagedSaveDefineXML on read-only connections CVE-2019-10166 - api: disallow virConnectGetDomainCapabilities on read-only connections CVE-2019-10167 - api: disallow...

8.8CVSS0.3AI score0.01553EPSS
Exploits1
CVE
CVE
added 2019/08/02 12:2 p.m.274 views

CVE-2019-10166

Summary: CVE-2019-10166 affects libvirt. Affected versions: libvirt 4.x up to before 4.10.1 and 5.x up to before 5.4.1. Root cause: The virDomainManagedSaveDefineXML API was exposed to read‑only clients, enabling modification of managed save state files. Impact: If a privileged user created a man...

7.8CVSS7.4AI score0.00469EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2019/08/02 12:2 p.m.31 views

CVE-2019-10166

It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML API, which would permit them to modify managed save state files. If a managed save had already been created by a privileged user, a local...

7.8CVSS8.2AI score0.00469EPSS
Exploits0
Oracle linux
Oracle linux
added 2019/07/30 12:0 a.m.102 views

virt:rhel security update

libguestfs 1:1.38.4-10.1.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-10.1 - Fix inspection of partition-less devices resolves: rhbz1714747 libssh2 1.8.0-7.el80.1 - fix integer overflow in keyboard interactive handling th...

9.3CVSS1.7AI score0.09219EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/07/25 12:0 a.m.41 views

EulerOS 2.0 SP8 : libvirt (EulerOS-SA-2019-1774)

According to the versions of the libvirt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libvirt: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API CVE-2019-10161 - libvirt: virDomainManagedSaveDefineXML API exposed to...

8.8CVSS8AI score0.00549EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.59 views

openSUSE Security Update : libvirt (openSUSE-2019-1753)

This update for libvirt fixes the following issues : Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8AI score0.00549EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.50 views

Oracle Linux 7 : libvirt (ELSA-2019-4714)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4714 advisory. - api: disallow virDomainSaveImageGetXMLDesc on read-only connections Jan Tomko Orabug: 29955742 CVE-2019-10161 - api: disallow...

8.8CVSS7.1AI score0.01553EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2019/07/11 4:27 p.m.114 views

Important: Red Hat Security Advisory: virt:8.0.0 security update

An update for the virt:8.0.0 module is now available for Red Hat Enterprise Linux 8 Advanced Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.4AI score0.00549EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2019/07/11 12:0 a.m.29 views

Fedora Update for libvirt FEDORA-2019-9210998aaa

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.5AI score0.01553EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.40 views

Fedora 30 : libvirt (2019-b2dfb13daf)

CVE-2019-10161: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API bz 1722463, bz 1720115 - CVE-2019-10166: virDomainManagedSaveDefineXML API exposed to readonly clients bz 1722462, bz 1720114 - CVE-2019-10167: arbitrary command execution via virConnectGetDomainCapabilities API bz...

8.8CVSS7.2AI score0.01108EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.231 views

Fedora 29 : libvirt (2019-9210998aaa)

CVE-2019-10161: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API bz 1722463, bz 1720115 - CVE-2019-10166: virDomainManagedSaveDefineXML API exposed to readonly clients bz 1722462, bz 1720114 - CVE-2019-10167: arbitrary command execution via virConnectGetDomainCapabilities API bz...

8.8CVSS7.2AI score0.01411EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.258 views

RHEL 7 : redhat-virtualization-host (RHSA-2019:1699)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1699 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

8.8CVSS7.3AI score0.98745EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2019/07/01 12:0 a.m.43 views

openSUSE Security Update : libvirt (openSUSE-2019-1672)

This update for libvirt fixes the following issues : Security issues fixed : - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8.1AI score0.00521EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2019/07/01 12:0 a.m.34 views

openSUSE: Security Advisory for libvirt (openSUSE-SU-2019:1672-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.2AI score0.00521EPSS
Exploits0References2
OSV
OSV
added 2019/06/30 7:3 p.m.5 views

OPENSUSE-SU-2019:1672-1 Security update for libvirt

This update for libvirt fixes the following issues: Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8.2AI score0.00521EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2019/06/24 12:0 a.m.39 views

SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2019:1599-1)

This update for libvirt fixes the following issues : Security issues fixed : CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8.2AI score0.00521EPSS
Exploits0References10
Rows per page
Query Builder