CVE-2015-0236 — Sensitive Information Exposure in Redhat Libvirt

CWE-200 — Sensitive Information Exposure CWE-285 — Improper Authorization10 documents8 sources

Severity

3.5LOWNVD

EPSS

0.7%

top 29.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Libvirt Canonical Ubuntu Linux Mageia +4 more

Timeline

PublishedJan 29

Latest updateMay 14

Description

libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages7 packages

▶Debianredhat/libvirt< 1.2.9-8+3

▶NVDredhat/libvirt1.2.11+11

▶NVDmageia/mageia4.0

▶NVDredhat/enterprise_linux_server7.0

▶NVDredhat/enterprise_linux_desktop7.0

Also affects: Ubuntu Linux 12.04, 14.04, 15.04, 15.10

Patches

Patch: security.libvirt.org ↗Patch: security.libvirt.org ↗

🔴Vulnerability Details

GHSA

GHSA-rj3c-3mq3-fpc6: libvirt before 1↗2022-05-14

▶

OSV

libvirt vulnerabilities↗2016-01-12

▶

CVEList

CVE-2015-0236: libvirt before 1↗2015-01-29

▶

OSV

CVE-2015-0236: libvirt before 1↗2015-01-29

▶

📋Vendor Advisories

Ubuntu

libvirt vulnerabilities↗2016-01-12

▶

Red Hat

libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects↗2015-01-22

▶

Debian

CVE-2015-0236: libvirt - libvirt before 1.2.12 allow remote authenticated users to obtain the VNC passwor...↗2015

▶

💬Community

Bugzilla

CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects [fedora-all]↗2015-01-26

▶

Bugzilla

CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects↗2015-01-21

▶