Lucene search
K

4 matches found

Veracode
Veracode
added 2018/08/15 3:27 a.m.22 views

Code Execution Via Privilege Escalation

libvirt.so is vulnerable to privilege escalation. The vulnerability is possible because failure to check connect:write permission in the virConnectDomainXMLToNative function provides the attacker domain:write privileges to execute Qemu binaries through malicious XML...

8.5CVSS6.4AI score0.01689EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2013/11/02 6:55 p.m.8 views

CVE-2013-4401

The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these details are obtained fr...

8.7AI score
Exploits0References8
NVD
NVD
added 2013/11/02 6:55 p.m.27 views

CVE-2013-4401

The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these details are obtained fr...

8.5CVSS8.3AI score0.01689EPSS
Exploits0References8
OSV
OSV
added 2013/11/02 6:55 p.m.2 views

DEBIAN-CVE-2013-4401

The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these details are obtained fr...

8.5CVSS6.8AI score0.01689EPSS
Exploits0References1
Rows per page
Query Builder