Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat libvirt 1.1.0 vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2013-4401
The virConnectDomainXMLToNative API function in libvirt 1.1.0 up to and including 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows malicious users to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: so...
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.1
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
2.1
CVSSv2
CVE-2013-4292
libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote/remote_driver.c.
Redhat Libvirt 1.1.1
Redhat Libvirt 1.1.0
5
CVSSv2
CVE-2013-4153
Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 up to and including 1.1.0 allows remote malicious users to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest&...
Redhat Libvirt 1.0.6
Redhat Libvirt 1.1.0
2.1
CVSSv2
CVE-2013-6436
The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 up to and including 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash...
Redhat Libvirt 1.0.5.4
Redhat Libvirt 1.0.5.3
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.5.6
Redhat Libvirt 1.2.0
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.0.6
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.1
Redhat Libvirt 1.0.5.2
Redhat Libvirt 1.0.5.5
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
5.8
CVSSv2
CVE-2013-6456
The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 up to and including 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; (2) create arbitrary nodes (mknod) via the virDomainDeviceAttach ...
Redhat Libvirt 1.0.5.4
Redhat Libvirt 1.0.5.3
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.5.6
Redhat Libvirt 1.0.4
Redhat Libvirt 1.2.0
Redhat Libvirt 1.0.1
Redhat Libvirt 1.2.1
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.0.6
Redhat Libvirt 1.0.2
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.1
Fedoraproject Fedora 20
Redhat Libvirt 1.0.5.2
Redhat Libvirt 1.0.3
Redhat Libvirt 1.0.5.5
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
4
CVSSv2
CVE-2013-4297
The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and previous versions allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
5.2
CVSSv2
CVE-2013-6457
The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt prior to 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibly execute arbitrary code via...
Redhat Libvirt 0.0.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.1.0
Redhat Libvirt 0.1.1
Redhat Libvirt 0.10.2.4
Redhat Libvirt 0.10.2.5
Redhat Libvirt 0.10.2.6
Redhat Libvirt 0.10.2.7
Redhat Libvirt 0.4.3
Redhat Libvirt 0.4.4
Redhat Libvirt 0.4.5
Redhat Libvirt 0.4.6
Redhat Libvirt 0.7.5
Redhat Libvirt 0.7.6
Redhat Libvirt 0.7.7
Redhat Libvirt 0.8.0
Redhat Libvirt 0.9.11.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.9.11.4
Redhat Libvirt 0.9.11.5
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.7
4.3
CVSSv2
CVE-2013-4399
The remoteClientFreeFunc function in daemon/remote.c in libvirt prior to 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote malicious users to cause a denial of service (use-after-free and crash) by registering an event...
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
5
CVSSv2
CVE-2013-5651
The virBitmapParse function in util/virbitmap.c in libvirt prior to 1.1.2 allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted bitmap, as demonstrated by a large nodeset value to numatune.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started