Privilege Escalation

2020-04-1001:05:48

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

JSON

qemu-kvm is vulnerable to privilege escalation. It was found that qemu-kvm did not properly drop supplemental group privileges when the root user started guests from the command line (“/usr/libexec/qemu-kvm”) with the “-runas” option. A qemu-kvm process started this way could use this flaw to gain access to files on the host that are accessible to the supplementary groups and not accessible to the primary group.

CPENameOperatorVersion
qemu-kvmeq0.12.1.2__2.160.el6_1.2
qemu-kvmeq0.12.1.2__2.113.el6
qemu-kvmeq0.12.1.2__2.113.el6_0.3
qemu-kvmeq0.12.1.2__2.113.el6_0.6
qemu-kvmeq0.12.1.2__2.160.el6
qemu-kvmeq0.12.1.2__2.160.el6_1.6
qemu-kvmeq0.12.1.2__2.160.el6_1.8
qemu-kvmeq0.12.1.2__2.160.el6_1.9
qemu-kvmeq0.12.1.2__2.160.el6_1.3
qemu-kvmeq0.12.1.2__2.113.el6_0.8

Name	Operator	Version
qemu-kvm	eq	0.12.1.2__2.160.el6_1.2
qemu-kvm	eq	0.12.1.2__2.113.el6
qemu-kvm	eq	0.12.1.2__2.113.el6_0.3
qemu-kvm	eq	0.12.1.2__2.113.el6_0.6
qemu-kvm	eq	0.12.1.2__2.160.el6
qemu-kvm	eq	0.12.1.2__2.160.el6_1.6
qemu-kvm	eq	0.12.1.2__2.160.el6_1.8
qemu-kvm	eq	0.12.1.2__2.160.el6_1.9
qemu-kvm	eq	0.12.1.2__2.160.el6_1.3
qemu-kvm	eq	0.12.1.2__2.113.el6_0.8