CVE-2020-35517 — Improper Privilege Management in Qemu

CWE-269 — Improper Privilege Management CWE-284 — Improper Access Control7 documents6 sources

Severity

8.2HIGHNVD

OSV2.3

EPSS

0.1%

top 75.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Debian Qemu

Timeline

PublishedJan 28

Latest updateMay 24

Description

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 1.5 | Impact: 6.0

Affected Packages5 packages

▶debiandebian/qemu< qemu 1:5.2+dfsg-5 (bookworm)

▶Debianqemu/qemu< 1:5.2+dfsg-5+3

▶Ubuntuqemu/qemu< 1:2.11+dfsg-1ubuntu7.37+1

▶NVDqemu/qemu5.0.0 — 5.2.50

▶CVEListV5qemu/qemuqemu 5.2.0

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: lists.gnu.org ↗

🔴Vulnerability Details

GHSA

GHSA-jgxm-7vmw-79h7: A flaw was found in qemu↗2022-05-24

▶

OSV

qemu vulnerabilities↗2021-07-15

▶

OSV

CVE-2020-35517: A flaw was found in qemu↗2021-01-28

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2021-07-15

▶

Red Hat

QEMU: virtiofsd: potential privileged host device access from guest↗2021-01-21

▶

Debian

CVE-2020-35517: qemu - A flaw was found in qemu. A host privilege escalation issue was found in the vir...↗2020

▶