Lucene search

RedhatCVE-2013-1766

HistoryMar 20, 2013 - 3:55 p.m.

CVE-2013-1766

2013-03-2015:55:00

CWE-264

redhat

web.nvd.nist.gov

cve-2013-1766

libvirt

device files

local users

write access

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.

Affected configurations

Nvd

Node

redhatlibvirtRange≤1.0.2

redhatlibvirtMatch0.0.1

redhatlibvirtMatch0.0.2

redhatlibvirtMatch0.0.3

redhatlibvirtMatch0.0.4

redhatlibvirtMatch0.0.5

redhatlibvirtMatch0.0.6

redhatlibvirtMatch0.1.0

redhatlibvirtMatch0.1.1

redhatlibvirtMatch0.1.3

redhatlibvirtMatch0.1.4

redhatlibvirtMatch0.1.5

redhatlibvirtMatch0.1.6

redhatlibvirtMatch0.1.7

redhatlibvirtMatch0.1.8

redhatlibvirtMatch0.1.9

redhatlibvirtMatch0.2.0

redhatlibvirtMatch0.2.1

redhatlibvirtMatch0.2.2

redhatlibvirtMatch0.2.3

redhatlibvirtMatch0.3.0

redhatlibvirtMatch0.3.1

redhatlibvirtMatch0.3.2

redhatlibvirtMatch0.3.3

redhatlibvirtMatch0.4.0

redhatlibvirtMatch0.4.1

redhatlibvirtMatch0.4.2

redhatlibvirtMatch0.4.3

redhatlibvirtMatch0.4.4

redhatlibvirtMatch0.4.5

redhatlibvirtMatch0.4.6

redhatlibvirtMatch0.5.0

redhatlibvirtMatch0.5.1

redhatlibvirtMatch0.6.0

redhatlibvirtMatch0.6.1

redhatlibvirtMatch0.6.2

redhatlibvirtMatch0.6.3

redhatlibvirtMatch0.6.4

redhatlibvirtMatch0.6.5

redhatlibvirtMatch0.7.0

redhatlibvirtMatch0.7.1

redhatlibvirtMatch0.7.2

redhatlibvirtMatch0.7.3

redhatlibvirtMatch0.7.4

redhatlibvirtMatch0.7.5

redhatlibvirtMatch0.7.6

redhatlibvirtMatch0.7.7

redhatlibvirtMatch0.8.0

redhatlibvirtMatch0.8.1

redhatlibvirtMatch0.8.2

redhatlibvirtMatch0.8.3

redhatlibvirtMatch0.8.4

redhatlibvirtMatch0.8.5

redhatlibvirtMatch0.8.6

redhatlibvirtMatch0.8.7

redhatlibvirtMatch0.8.8

redhatlibvirtMatch0.9.0

redhatlibvirtMatch0.9.1

redhatlibvirtMatch0.9.2

redhatlibvirtMatch0.9.3

redhatlibvirtMatch0.9.4

redhatlibvirtMatch0.9.5

redhatlibvirtMatch0.9.6

redhatlibvirtMatch0.9.7

redhatlibvirtMatch0.9.8

redhatlibvirtMatch0.9.9

redhatlibvirtMatch0.9.10

redhatlibvirtMatch0.9.11

redhatlibvirtMatch0.9.12

redhatlibvirtMatch0.9.13

redhatlibvirtMatch1.0.0

redhatlibvirtMatch1.0.1

VendorProductVersionCPE
redhatlibvirt*cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*
redhatlibvirt0.0.1cpe:2.3:a:redhat:libvirt:0.0.1:*:*:*:*:*:*:*
redhatlibvirt0.0.2cpe:2.3:a:redhat:libvirt:0.0.2:*:*:*:*:*:*:*
redhatlibvirt0.0.3cpe:2.3:a:redhat:libvirt:0.0.3:*:*:*:*:*:*:*
redhatlibvirt0.0.4cpe:2.3:a:redhat:libvirt:0.0.4:*:*:*:*:*:*:*
redhatlibvirt0.0.5cpe:2.3:a:redhat:libvirt:0.0.5:*:*:*:*:*:*:*
redhatlibvirt0.0.6cpe:2.3:a:redhat:libvirt:0.0.6:*:*:*:*:*:*:*
redhatlibvirt0.1.0cpe:2.3:a:redhat:libvirt:0.1.0:*:*:*:*:*:*:*
redhatlibvirt0.1.1cpe:2.3:a:redhat:libvirt:0.1.1:*:*:*:*:*:*:*
redhatlibvirt0.1.3cpe:2.3:a:redhat:libvirt:0.1.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	libvirt	*	cpe:2.3:a:redhat:libvirt::::::::
redhat	libvirt	0.0.1	cpe:2.3:a:redhat:libvirt:0.0.1:::::::*
redhat	libvirt	0.0.2	cpe:2.3:a:redhat:libvirt:0.0.2:::::::*
redhat	libvirt	0.0.3	cpe:2.3:a:redhat:libvirt:0.0.3:::::::*
redhat	libvirt	0.0.4	cpe:2.3:a:redhat:libvirt:0.0.4:::::::*
redhat	libvirt	0.0.5	cpe:2.3:a:redhat:libvirt:0.0.5:::::::*
redhat	libvirt	0.0.6	cpe:2.3:a:redhat:libvirt:0.0.6:::::::*
redhat	libvirt	0.1.0	cpe:2.3:a:redhat:libvirt:0.1.0:::::::*
redhat	libvirt	0.1.1	cpe:2.3:a:redhat:libvirt:0.1.1:::::::*
redhat	libvirt	0.1.3	cpe:2.3:a:redhat:libvirt:0.1.3:::::::*