CVE-2019-10132 in libvirt信息

摘要

由 MITRE

A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

Red Hat, Inc.

预定

2019-03-27

管理

已接受

条目

VDB-135361

CPE

准备好

CWE

CWE-264 (已确认)

CVSS

8.8 (NVD)

EPSS

0.01283

KEV

否

活动

非常低

部门

Transportation, Government, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-10132
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-10132
CVE Details	https://www.cvedetails.com/cve/CVE-2019-10132/

◂ 上一步一览下一步 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!