Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-1798

Published: 15/09/2022 Updated: 19/09/2022
CVSS v3 Base Score: 6.5 | Impact Score: 4 | Exploitability Score: 2
VMScore: 0
Subscribe to Kubevirt

Vulnerability Summary

A path traversal vulnerability in KubeVirt versions up to 0.56 (and 0.55.1) on all platforms allows a user able to configure the kubevirt to read arbitrary files on the host filesystem which are publicly readable or which are readable for UID 107 or GID 107. /proc/self/<> is not accessible.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kubevirt kubevirt

Vendor Advisories

Red Hat: Important: OpenShift Virtualization 4.8.7 Images bug fixes and security update
Synopsis Important: OpenShift Virtualization 487 Images bug fixes and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 487 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Important: OpenShift Virtualization 4.9.6 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 496 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 496 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a securit ...
Red Hat: Important: OpenShift Virtualization 4.10.5 Images security and bug fix update
概述 Important: OpenShift Virtualization 4105 Images security and bug fix update 类型/严重性 Security Advisory: Important 标题 Red Hat OpenShift Virtualization release 4105 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a sec ...
Red Hat: Important: OpenShift Virtualization 4.11.0 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 4110 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4110 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Important: OpenShift Virtualization 4.12.0 Images security update
Synopsis Important: OpenShift Virtualization 4120 Images security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 412 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security impact of ...

References

CWE-22https://github.com/kubevirt/kubevirt/security/advisories/GHSA-qv98-3369-g364https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2022:6890
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook