Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat libvirt 1.0.1 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-4154
The qemuAgentCommand function in libvirt prior to 1.1.1, when a guest agent is not configured, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to "agent based cpu (un)plug," as demonstrated by the "...
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.4
Redhat Libvirt 1.0.1
Redhat Libvirt
Redhat Libvirt 1.0.6
Redhat Libvirt 1.0.2
Redhat Libvirt 1.0.3
Redhat Libvirt 1.0.0
516
VMScore
CVE-2013-6456
The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 up to and including 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; (2) create arbitrary nodes (mknod) via the virDomainDeviceAttach ...
Redhat Libvirt 1.0.5.4
Redhat Libvirt 1.0.5.3
Redhat Libvirt 1.0.5
Redhat Libvirt 1.0.5.6
Redhat Libvirt 1.0.4
Redhat Libvirt 1.2.0
Redhat Libvirt 1.0.1
Redhat Libvirt 1.2.1
Redhat Libvirt 1.1.2
Redhat Libvirt 1.1.4
Redhat Libvirt 1.0.6
Redhat Libvirt 1.0.2
Redhat Libvirt 1.1.1
Redhat Libvirt 1.0.5.1
Fedoraproject Fedora 20
Redhat Libvirt 1.0.5.2
Redhat Libvirt 1.0.3
Redhat Libvirt 1.0.5.5
Redhat Libvirt 1.1.0
Redhat Libvirt 1.1.3
320
VMScore
CVE-2013-1766
libvirt 1.0.2 and previous versions sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.
Redhat Libvirt 0.9.0
Redhat Libvirt 0.1.9
Redhat Libvirt 0.2.0
Redhat Libvirt 0.1.7
Redhat Libvirt 0.5.1
Redhat Libvirt 0.8.0
Redhat Libvirt 0.5.0
Redhat Libvirt 0.8.1
Redhat Libvirt 0.8.4
Redhat Libvirt 0.4.4
Redhat Libvirt 0.8.5
Redhat Libvirt 0.4.3
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.7.3
Redhat Libvirt 0.9.6
Redhat Libvirt 0.7.0
Redhat Libvirt
Redhat Libvirt 1.0.1
Redhat Libvirt 1.0.0
Redhat Libvirt 0.8.8
Redhat Libvirt 0.2.2
356
VMScore
CVE-2013-2230
The qemu driver (qemu/qemu_driver.c) in libvirt prior to 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via unspecified vectors involving "multiple events registration."
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
356
VMScore
CVE-2013-4297
The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and previous versions allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
Redhat Libvirt 0.9.11.8
Redhat Libvirt 0.7.4
Redhat Libvirt 0.9.10
463
VMScore
CVE-2013-6457
The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt prior to 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibly execute arbitrary code via...
Redhat Libvirt 0.0.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.1.0
Redhat Libvirt 0.1.1
Redhat Libvirt 0.10.2.4
Redhat Libvirt 0.10.2.5
Redhat Libvirt 0.10.2.6
Redhat Libvirt 0.10.2.7
Redhat Libvirt 0.4.3
Redhat Libvirt 0.4.4
Redhat Libvirt 0.4.5
Redhat Libvirt 0.4.6
Redhat Libvirt 0.7.5
Redhat Libvirt 0.7.6
Redhat Libvirt 0.7.7
Redhat Libvirt 0.8.0
Redhat Libvirt 0.9.11.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.9.11.4
Redhat Libvirt 0.9.11.5
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.7
383
VMScore
CVE-2013-4399
The remoteClientFreeFunc function in daemon/remote.c in libvirt prior to 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote malicious users to cause a denial of service (use-after-free and crash) by registering an event...
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
445
VMScore
CVE-2013-5651
The virBitmapParse function in util/virbitmap.c in libvirt prior to 1.1.2 allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted bitmap, as demonstrated by a large nodeset value to numatune.
Redhat Libvirt 0.4.1
Redhat Libvirt 0.9.13
Redhat Libvirt 0.8.6
Redhat Libvirt 1.0.5.4
Redhat Libvirt 0.9.6.3
Redhat Libvirt 0.9.2
Redhat Libvirt 0.4.5
Redhat Libvirt 0.7.5
Redhat Libvirt 0.0.6
Redhat Libvirt 0.9.5
Redhat Libvirt 1.0.5.3
Redhat Libvirt 0.5.0
Redhat Libvirt 0.10.2.2
Redhat Libvirt
Redhat Libvirt 0.9.11.3
Redhat Libvirt 0.7.2
Redhat Libvirt 0.1.1
Redhat Libvirt 0.0.3
Redhat Libvirt 0.1.7
Redhat Libvirt 0.0.1
Redhat Libvirt 1.0.5
Redhat Libvirt 0.2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started