Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:27116
HistorySep 21, 2020 - 6:36 a.m.

Privilege Escalation

2020-09-2106:36:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
qemu
vulnerability
privilege escalation
virtfs
guest user

EPSS

0.002

Percentile

59.1%

Qemu is vulnerable to privilege escalation. An improper link following occurs when building with the VirtFS. A privileged user inside guest can exploit the vulnerability to access host file system beyond the shared folder and potentially escalating their privileges on a host.