Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat libvirt 0.9.1 vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2011-2178
The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 up to and including 0.9.1 uses the wrong argument for a sizeof call, which causes incorrect processing of "security manager private data" that "reopens disk probing" ...
Redhat Libvirt 0.9.0
Redhat Libvirt 0.8.8
Redhat Libvirt 0.9.1
4
CVSSv2
CVE-2011-2511
Integer overflow in libvirt prior to 0.9.3 allows remote authenticated users to cause a denial of service (libvirtd crash) and possibly execute arbitrary code via a crafted VirDomainGetVcpus RPC call that triggers memory corruption.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.8.6
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.5.0
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 0.2.0
Redhat Libvirt 0.7.4
Redhat Libvirt 0.4.4
Redhat Libvirt 0.3.3
Redhat Libvirt 0.0.2
Redhat Libvirt 0.1.8
Redhat Libvirt 0.3.0
Redhat Libvirt 0.1.3
Redhat Libvirt 0.1.9
Redhat Libvirt 0.4.2
Redhat Libvirt 0.8.5
3.6
CVSSv2
CVE-2013-1766
libvirt 1.0.2 and previous versions sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.
Redhat Libvirt 0.9.0
Redhat Libvirt 0.1.9
Redhat Libvirt 0.2.0
Redhat Libvirt 0.1.7
Redhat Libvirt 0.5.1
Redhat Libvirt 0.8.0
Redhat Libvirt 0.5.0
Redhat Libvirt 0.8.1
Redhat Libvirt 0.8.4
Redhat Libvirt 0.4.4
Redhat Libvirt 0.8.5
Redhat Libvirt 0.4.3
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.7.3
Redhat Libvirt 0.9.6
Redhat Libvirt 0.7.0
Redhat Libvirt
Redhat Libvirt 1.0.1
Redhat Libvirt 1.0.0
Redhat Libvirt 0.8.8
Redhat Libvirt 0.2.2
5
CVSSv2
CVE-2012-4423
The virNetServerProgramDispatchCall function in libvirt prior to 0.10.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and segmentation fault) via an RPC call with (1) an event as the RPC number or (2) an RPC number whose value is in a "...
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt
Redhat Libvirt 0.2.0
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
Redhat Libvirt 0.4.4
Redhat Libvirt 0.3.3
Redhat Libvirt 0.0.2
Redhat Libvirt 0.1.8
3.7
CVSSv2
CVE-2012-2693
libvirt, possibly prior to 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices.
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.1
Redhat Libvirt 0.9.0
Redhat Libvirt 0.1.9
Redhat Libvirt 0.2.2
Redhat Libvirt 0.1.0
Redhat Libvirt 0.1.4
Redhat Libvirt 0.5.1
Redhat Libvirt 0.6.3
Redhat Libvirt 0.6.2
Redhat Libvirt 0.8.4
Redhat Libvirt 0.4.4
Redhat Libvirt 0.0.2
Redhat Libvirt 0.0.1
Redhat Libvirt 0.7.7
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.8.8
Redhat Libvirt 0.1.8
Redhat Libvirt 0.2.3
Redhat Libvirt 0.0.6
4
CVSSv2
CVE-2013-2230
The qemu driver (qemu/qemu_driver.c) in libvirt prior to 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via unspecified vectors involving "multiple events registration."
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
4
CVSSv2
CVE-2013-4297
The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and previous versions allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
5.2
CVSSv2
CVE-2013-6457
The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt prior to 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibly execute arbitrary code via...
Redhat Libvirt 0.0.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.1.0
Redhat Libvirt 0.1.1
Redhat Libvirt 0.10.2.4
Redhat Libvirt 0.10.2.5
Redhat Libvirt 0.10.2.6
Redhat Libvirt 0.10.2.7
Redhat Libvirt 0.4.3
Redhat Libvirt 0.4.4
Redhat Libvirt 0.4.5
Redhat Libvirt 0.4.6
Redhat Libvirt 0.7.5
Redhat Libvirt 0.7.6
Redhat Libvirt 0.7.7
Redhat Libvirt 0.8.0
Redhat Libvirt 0.9.11.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.9.11.4
Redhat Libvirt 0.9.11.5
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.7
4.3
CVSSv2
CVE-2013-4399
The remoteClientFreeFunc function in daemon/remote.c in libvirt prior to 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote malicious users to cause a denial of service (use-after-free and crash) by registering an event...
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
5
CVSSv2
CVE-2013-5651
The virBitmapParse function in util/virbitmap.c in libvirt prior to 1.1.2 allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted bitmap, as demonstrated by a large nodeset value to numatune.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started