CVE-2014-7823

CWE-255CWE-416Use After Free11 documents8 sources
Severity
5.0MEDIUM
EPSS
0.5%
top 32.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Libvirt
Timeline
PublishedNov 13
Latest updateFeb 26

Description

The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_MIGRATABLE flag, which triggers the use of the VIR_DOMAIN_XML_SECURE flag.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

Debianlibvirt< 1.2.9-4+3
NVDredhat/libvirt1.2.10+10

Patches

Patch: security.libvirt.orgPatch: security.libvirt.org

🔴Vulnerability Details

4
GHSA
GHSA-v2x4-6r33-27c2: The virDomainGetXMLDesc API in Libvirt before 12022-05-17
OSV
CVE-2014-7823: The virDomainGetXMLDesc API in Libvirt before 12014-11-13
CVEList
CVE-2014-7823: The virDomainGetXMLDesc API in Libvirt before 12014-11-13
OSV
libvirt vulnerabilities2014-11-11

📋Vendor Advisories

4
Red Hat
kernel: mptcp: Fix crash due to tcp_tsorted_anchor was initialized before release skb2025-02-26
Ubuntu
libvirt vulnerabilities2014-11-11
Red Hat
libvirt: dumpxml: information leak with migratable flag2014-11-05
Debian
CVE-2014-7823: libvirt - The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only use...2014

💬Community

2
Bugzilla
CVE-2014-7823 libvirt: dumpxml: information leak with migratable flag [fedora-all]2014-11-05
Bugzilla
CVE-2014-7823 libvirt: dumpxml: information leak with migratable flag2014-11-05
CVE-2014-7823 (MEDIUM CVSS 5) | The virDomainGetXMLDesc API in Libv | cvebase.io