Lucene search

K

RedosROS-20240415-02

HistoryApr 15, 2024 - 12:00 a.m.

ROS-20240415-02

2024-04-1500:00:00

redos.red-soft.ru

8

udevlistinterfacesbystatus

libvirt module

off-by-one error

denial of service

unix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

Vulnerability of udevListInterfacesByStatus() function in module src/interface/interface_backend_udev.c of libvirt library is caused by an off-by-one error.
module of the libvirt library has an off-by-one error. Exploitation of the vulnerability
could allow an attacker to cause a denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64libvirt<= 7.6.0-4UNKNOWN

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

Related for ROS-20240415-02

cbl_mariner1 fedora2 openvas6 cvelist1 ubuntucve1 debiancve1 cve1 redhatcve1 oraclelinux4 prion1 nessus16 veracode1 nvd1 githubexploit1 osv5 ubuntu2 redhat1 photon2 almalinux1 rocky1 amazon1 debian1