Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat libvirt 1.1.1 vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2013-4401
The virConnectDomainXMLToNative API function in libvirt 1.1.0 up to and including 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows malicious users to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: so...
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.1
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
4.3
CVSSv2
CVE-2014-0028
libvirt 1.1.1 up to and including 1.2.0 allows context-dependent malicious users to bypass the domain:getattr and connect:search_domains restrictions in ACLs and obtain sensitive domain object information via a request to the (1) virConnectDomainEventRegister and (2) virConnectDo...
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.1.1
Redhat Libvirt 1.1.3
Redhat Libvirt 1.2.0
6.9
CVSSv2
CVE-2013-4291
The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to gain privileges.
Redhat Libvirt 0.10.2.7
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.5
2.1
CVSSv2
CVE-2013-4292
libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote/remote_driver.c.
Redhat Libvirt 1.1.1
Redhat Libvirt 1.1.0
2.1
CVSSv2
CVE-2013-6436
The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 up to and including 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash...
Redhat Libvirt 1.0.5.4
Redhat Libvirt 1.0.5.3
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.5.6
Redhat Libvirt 1.2.0
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.0.6
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.1
Redhat Libvirt 1.0.5.2
Redhat Libvirt 1.0.5.5
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
5.8
CVSSv2
CVE-2013-6456
The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 up to and including 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; (2) create arbitrary nodes (mknod) via the virDomainDeviceAttach ...
Redhat Libvirt 1.0.5.4
Redhat Libvirt 1.0.5.3
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.5.6
Redhat Libvirt 1.0.4
Redhat Libvirt 1.2.0
Redhat Libvirt 1.0.1
Redhat Libvirt 1.2.1
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.0.6
Redhat Libvirt 1.0.2
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.1
Fedoraproject Fedora 20
Redhat Libvirt 1.0.5.2
Redhat Libvirt 1.0.3
Redhat Libvirt 1.0.5.5
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
4
CVSSv2
CVE-2013-4239
The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the virConnectListDefinedDomains API function.
Redhat Libvirt 1.1.1
4
CVSSv2
CVE-2013-2230
The qemu driver (qemu/qemu_driver.c) in libvirt prior to 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via unspecified vectors involving "multiple events registration."
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
4.3
CVSSv2
CVE-2013-4154
The qemuAgentCommand function in libvirt prior to 1.1.1, when a guest agent is not configured, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to "agent based cpu (un)plug," as demonstrated by the "...
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.4
Redhat Libvirt 1.0.1
Redhat Libvirt
Redhat Libvirt 1.0.6
Redhat Libvirt 1.0.2
Redhat Libvirt 1.0.3
Redhat Libvirt 1.0.0
4
CVSSv2
CVE-2013-4297
The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and previous versions allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »