Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.2 views

SUSE CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS8.5AI score0.01196EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.6 views

The vulnerability of the HTTP cookie files in the Libvirt virtualization management library, related to improper deletion of critical data at the boundary, allows a hacker to access confidential data.

The vulnerability of the HTTP cookie file in the Libvirt virtualization management library is related to the storage of data in the dump XML file of the host domain. Exploiting this vulnerability allows a malicious actor to gain access to confidential data using the dumpxml command...

6.5CVSS7AI score0.01196EPSS
Exploits0References6Affected Software3
AlpineLinux
AlpineLinux
added 2021/05/27 8:15 p.m.45 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS4AI score0.01196EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/05/27 8:15 p.m.30 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS6.9AI score0.01196EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/05/27 7:44 p.m.34 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.9AI score0.01196EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/07/28 7:14 a.m.4 views

libvirt: leak of sensitive cookie information via dumpxml

An information disclosure vulnerability was found in libvirt. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw could allow a malicious user with a read-only connection to access potentially sensitive information in the domain configuration...

6.5CVSS7.3AI score0.01196EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/01/05 8:29 p.m.5 views

libvirt: dumpxml: information leak with migratable flag

It was found that when the VIRDOMAINXMLMIGRATABLE flag was used, the QEMU driver implementation of the virDomainGetXMLDesc function could bypass the restrictions of the VIRDOMAINXMLSECURE flag. A remote attacker able to establish a read-only connection to libvirtd could use this flaw to leak...

5CVSS6.9AI score0.01905EPSS
Exploits0References4
Rows per page
Query Builder