Privilege Escalation

2020-04-1000:38:08

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

47.2%

JSON

xen is vulnerable to privilege escalation. The vulnerability exists as the pyGrub boot loader did not honor the “password” option in the grub.conf file for para-virtualized guests. Users with access to a guest’s console could use this flaw to bypass intended access restrictions and boot the guest with arbitrary kernel boot options, allowing them to get root privileges in the guest’s operating system. With this update, pyGrub correctly honors the “password” option in grub.conf for para-virtualized guests.

CPENameOperatorVersion
xeneq3.0.3__80.el5_3.2
xeneq3.0.3__41.el5_1.5
xeneq3.0.3__64.el5_2.1
xeneq3.0.3__80.el5_3.3
xeneq3.0.3__25.0.4.el5
xeneq3.0.3__64.el5
xeneq3.0.3__64.el5_2.9
xeneq3.0.3__41.el5_1.6
xeneq3.0.3__25.0.3.el5
xeneq3.0.3__25.el5

Name	Operator	Version
xen	eq	3.0.3__80.el5_3.2
xen	eq	3.0.3__41.el5_1.5
xen	eq	3.0.3__64.el5_2.1
xen	eq	3.0.3__80.el5_3.3
xen	eq	3.0.3__25.0.4.el5
xen	eq	3.0.3__64.el5
xen	eq	3.0.3__64.el5_2.9
xen	eq	3.0.3__41.el5_1.6
xen	eq	3.0.3__25.0.3.el5
xen	eq	3.0.3__25.el5