CVE-2013-4400
published 2013-12-09CVE-2013-4400: virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecified environment…
high7.2CVSS 3.1
AVLACLAuNCCICAC
virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecified environment variables or command-line arguments.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libvirt | < libvirt 1.1.4-1 (bookworm) | libvirt 1.1.4-1 (bookworm) |
| redhat | libvirt | — | — |
| redhat | libvirt | — | — |
| redhat | libvirt | >= 0 < 1.1.4-1 | 1.1.4-1 |
| redhat | libvirt | >= 0 < 1.1.4-1 | 1.1.4-1 |
| redhat | libvirt | >= 0 < 1.1.4-1 | 1.1.4-1 |
| redhat | libvirt | >= 0 < 1.1.4-1 | 1.1.4-1 |
CVSS provenance
nvd7.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH