Lucene search
K

27 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2019:1643-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.00549EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/16 12:0 a.m.35 views

GLSA-202003-18 : libvirt: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202003-18 libvirt: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details. Impact : A local privileged attacker could execute arbitrary...

8.8CVSS8.1AI score0.00549EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/10/22 12:0 a.m.61 views

Photon OS 3.0: Libvirt PHSA-2019-3.0-0032

An update of the libvirt package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0032. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130112;...

8.8CVSS8.5AI score0.00549EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.36 views

EulerOS Virtualization for ARM 64 3.0.2.0 : libvirt (EulerOS-SA-2019-1957)

According to the versions of the libvirt packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was discovered that libvirtd would permit read-only clients to use the virDomainSaveImageGetXMLDesc API, specifyin...

8.8CVSS7.8AI score0.00549EPSS
Exploits0References4
Amazon
Amazon
added 2019/08/23 12:0 a.m.100 views

Important: libvirt

Issue Overview: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2019-11091 Modern Intel microprocessors implement hardware-level micro-optimizations to...

8.8CVSS7.5AI score0.01553EPSS
Exploits0
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.104 views

libvirt security, bug fix, and enhancement update

4.5.0-23 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161 - api: disallow virDomainManagedSaveDefineXML on read-only connections CVE-2019-10166 - api: disallow virConnectGetDomainCapabilities on read-only connections CVE-2019-10167 - api: disallow...

8.8CVSS0.3AI score0.01553EPSS
Exploits1
NVD
NVD
added 2019/08/02 1:15 p.m.28 views

CVE-2019-10168

The virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's...

8.8CVSS7.8AI score0.00549EPSS
Exploits0References3
OSV
OSV
added 2019/08/02 1:15 p.m.25 views

CVE-2019-10168

The virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's...

7.8CVSS6.9AI score0.00549EPSS
Exploits0References3
CVE
CVE
added 2019/08/02 12:8 p.m.283 views

CVE-2019-10168

The CVE-2019-10168 issue affects the libvirt APIs virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU. Versions affected are libvirt 4.x before 4.10.1 and 5.x before 5.4.1. libvirt will execute the program specified by the emulator argument during domain capability probing. Read-on...

8.8CVSS7.6AI score0.00549EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2019/08/02 12:8 p.m.31 views

CVE-2019-10168

The virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's...

8.8CVSS8.4AI score0.00549EPSS
Exploits0
Oracle linux
Oracle linux
added 2019/07/30 12:0 a.m.102 views

virt:rhel security update

libguestfs 1:1.38.4-10.1.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-10.1 - Fix inspection of partition-less devices resolves: rhbz1714747 libssh2 1.8.0-7.el80.1 - fix integer overflow in keyboard interactive handling th...

9.3CVSS1.7AI score0.09219EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/07/25 12:0 a.m.41 views

EulerOS 2.0 SP8 : libvirt (EulerOS-SA-2019-1774)

According to the versions of the libvirt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libvirt: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API CVE-2019-10161 - libvirt: virDomainManagedSaveDefineXML API exposed to...

8.8CVSS8AI score0.00549EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.59 views

openSUSE Security Update : libvirt (openSUSE-2019-1753)

This update for libvirt fixes the following issues : Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8AI score0.00549EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.50 views

Oracle Linux 7 : libvirt (ELSA-2019-4714)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4714 advisory. - api: disallow virDomainSaveImageGetXMLDesc on read-only connections Jan Tomko Orabug: 29955742 CVE-2019-10161 - api: disallow...

8.8CVSS7.1AI score0.01553EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2019/07/11 4:27 p.m.114 views

Important: Red Hat Security Advisory: virt:8.0.0 security update

An update for the virt:8.0.0 module is now available for Red Hat Enterprise Linux 8 Advanced Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.4AI score0.00549EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2019/07/11 12:0 a.m.29 views

Fedora Update for libvirt FEDORA-2019-9210998aaa

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.5AI score0.01553EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.258 views

RHEL 7 : redhat-virtualization-host (RHSA-2019:1699)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1699 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

8.8CVSS7.3AI score0.98745EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.231 views

Fedora 29 : libvirt (2019-9210998aaa)

CVE-2019-10161: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API bz 1722463, bz 1720115 - CVE-2019-10166: virDomainManagedSaveDefineXML API exposed to readonly clients bz 1722462, bz 1720114 - CVE-2019-10167: arbitrary command execution via virConnectGetDomainCapabilities API bz...

8.8CVSS7.2AI score0.01411EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.40 views

Fedora 30 : libvirt (2019-b2dfb13daf)

CVE-2019-10161: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API bz 1722463, bz 1720115 - CVE-2019-10166: virDomainManagedSaveDefineXML API exposed to readonly clients bz 1722462, bz 1720114 - CVE-2019-10167: arbitrary command execution via virConnectGetDomainCapabilities API bz...

8.8CVSS7.2AI score0.01108EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/06/24 12:0 a.m.35 views

Oracle Linux 7 : libvirt (ELSA-2019-1579)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-1579 advisory. - api: disallow virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161 - api: disallow virDomainManagedSaveDefineXML on read-only...

8.8CVSS7.8AI score0.00549EPSS
Exploits0References5
Rows per page
Query Builder