Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:24511
HistoryApr 10, 2020 - 12:56 a.m.

Privilege Escalation

2020-04-1000:56:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

EPSS

0.075

Percentile

94.1%

JSON

libvirt is vulnerable to privilege escalation. The vulnerability exists as it was found that several libvirt API calls did not honor the read-only permission for connections. A local attacker able to establish a read-only connection to libvirtd on a server could use this flaw to execute commands that should be restricted to read-write connections, possibly leading to a denial of service or privilege escalation.

References

Related

openvas 20
nessus 19
ubuntu 1
oraclelinux 2
redhat 2
altlinux 1
debian 1
securityvulns 2
fedora 4
centos 1
prion 1
cvelist 1
debiancve 1
cve 1
ubuntucve 1
nvd 1
gentoo 1
osv 16
openvas
openvas
Ubuntu Update for libvirt vulnerability USN-1094-1
2011-04-01 00:00:00
RedHat Update for libvirt RHSA-2011:0391-01
2012-06-06 00:00:00
CentOS Update for libvirt CESA-2011:0391 centos5 i386
2011-08-09 00:00:00
nessus
nessus
CentOS 5 : libvirt (CESA-2011:0391)
2011-04-29 00:00:00
Oracle Linux 5 / 6 : libvirt (ELSA-2011-0391)
2013-07-12 00:00:00
openSUSE Security Update : libvirt (openSUSE-SU-2011:0311-1)
2011-05-05 00:00:00
ubuntu
ubuntu
Libvirt vulnerability
2011-03-29 00:00:00
oraclelinux
oraclelinux
libvirt security update
2011-03-28 00:00:00
libvirt security, bug fix, and enhancement update
2011-07-31 00:00:00
redhat
redhat
(RHSA-2011:0391) Important: libvirt security update
2011-03-28 00:00:00
(RHSA-2011:0439) Moderate: rhev-hypervisor security and bug fix update
2011-04-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libvirt version 0.9.0-alt1
2011-04-06 00:00:00
debian
debian
[SECURITY] [DSA 2194-1] libvirt security update
2011-03-18 07:47:49
securityvulns
securityvulns
libvirt protection bypass
2011-03-23 00:00:00
[SECURITY] [DSA 2194-1] libvirt security update
2011-03-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: libvirt-0.8.8-3.fc15
2011-03-19 05:50:43
[SECURITY] Fedora 13 Update: libvirt-0.8.2-6.fc13
2011-04-18 21:23:20
[SECURITY] Fedora 14 Update: libvirt-0.8.3-9.fc14
2011-04-11 21:00:16
centos
centos
libvirt security update
2011-04-28 14:15:01
prion
prion
Code injection
2011-03-15 17:55:00
cvelist
cvelist
CVE-2011-1146
2011-03-15 17:00:00
debiancve
debiancve
CVE-2011-1146
2011-03-15 17:55:05
cve
cve
CVE-2011-1146
2011-03-15 17:55:05
ubuntucve
ubuntucve
CVE-2011-1146
2011-03-15 00:00:00
nvd
nvd
CVE-2011-1146
2011-03-15 17:55:05
gentoo
gentoo
libvirt: Multiple vulnerabilities
2012-02-27 00:00:00
osv
osv
CVE-2022-0897
2022-03-25 19:15:10
CVE-2020-10703
2020-06-02 13:15:10
CVE-2021-3631
2022-03-02 23:15:08

EPSS

0.075

Percentile

94.1%

JSON
Related for VERACODE:24511
openvas20nessus19ubuntu1oraclelinux2redhat2altlinux1debian1securityvulns2fedora4centos1prion1cvelist1debiancve1cve1ubuntucve1nvd1gentoo1osv16