Published: 29/06/2012 Updated: 29/08/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

virt-edit in libguestfs prior to 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libguestfs libguestfs 1.17.39
libguestfs libguestfs 1.17.38
libguestfs libguestfs 1.17.31
libguestfs libguestfs 1.17.30
libguestfs libguestfs 1.17.23
libguestfs libguestfs 1.17.22
libguestfs libguestfs 1.17.21
libguestfs libguestfs 1.17.14
libguestfs libguestfs 1.17.13
libguestfs libguestfs 1.17.6
libguestfs libguestfs 1.17.5
libguestfs libguestfs 1.16.25
libguestfs libguestfs 1.16.24
libguestfs libguestfs 1.16.17
libguestfs libguestfs 1.16.16
libguestfs libguestfs 1.16.9
libguestfs libguestfs 1.16.8
libguestfs libguestfs 1.16.0
libguestfs libguestfs 1.17.37
libguestfs libguestfs 1.17.36
libguestfs libguestfs 1.17.29
libguestfs libguestfs 1.17.28
libguestfs libguestfs 1.17.20
libguestfs libguestfs 1.17.19
libguestfs libguestfs 1.17.12
libguestfs libguestfs 1.17.11
libguestfs libguestfs 1.17.4
libguestfs libguestfs 1.17.3
libguestfs libguestfs 1.16.23
libguestfs libguestfs 1.16.22
libguestfs libguestfs 1.16.15
libguestfs libguestfs 1.16.14
libguestfs libguestfs 1.16.7
libguestfs libguestfs 1.16.6
libguestfs libguestfs 1.17.41
libguestfs libguestfs 1.17.40
libguestfs libguestfs 1.17.33
libguestfs libguestfs 1.17.32
libguestfs libguestfs 1.17.25
libguestfs libguestfs 1.17.24
libguestfs libguestfs 1.17.16
libguestfs libguestfs 1.17.15
libguestfs libguestfs 1.17.8
libguestfs libguestfs 1.17.7
libguestfs libguestfs 1.17.0
libguestfs libguestfs
libguestfs libguestfs 1.16.26
libguestfs libguestfs 1.16.19
libguestfs libguestfs 1.16.18
libguestfs libguestfs 1.16.11
libguestfs libguestfs 1.16.10
libguestfs libguestfs 1.16.3
libguestfs libguestfs 1.16.2
libguestfs libguestfs 1.16.1
libguestfs libguestfs 1.17.42
libguestfs libguestfs 1.17.35
libguestfs libguestfs 1.17.34
libguestfs libguestfs 1.17.27
libguestfs libguestfs 1.17.26
libguestfs libguestfs 1.17.18
libguestfs libguestfs 1.17.17
libguestfs libguestfs 1.17.10
libguestfs libguestfs 1.17.9
libguestfs libguestfs 1.17.2
libguestfs libguestfs 1.17.1
libguestfs libguestfs 1.16.21
libguestfs libguestfs 1.16.20
libguestfs libguestfs 1.16.13
libguestfs libguestfs 1.16.12
libguestfs libguestfs 1.16.5
libguestfs libguestfs 1.16.4

Synopsis Low: libguestfs security, bug fix, and enhancement update Type/Severity Security Advisory: Low Topic Updated libguestfs packages that fix one security issue, several bugs, andadd various enhancements are now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this ...

CWE-255 http://www.securityfocus.com/bid/53932 http://secunia.com/advisories/49431 http://rhn.redhat.com/errata/RHSA-2012-0774.html http://secunia.com/advisories/49545 https://www.redhat.com/archives/libguestfs/2012-May/msg00104.html https://exchange.xforce.ibmcloud.com/vulnerabilities/76220 https://access.redhat.com/errata/RHSA-2012:0774 https://nvd.nist.gov

CVE-2012-2690

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect