Vulnerability in Redhat Libvirt

CVE-2014-7823

The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_MIGRATABLE flag, which triggers the use of the VIR_DOMAIN_XML_SECURE flag.

EPSS: 0.005 (67.6th percentile) — read the EPSS interpretation.

Affected products

Redhat Libvirt — versions 1.2.0, 1.2.1, 1.2.2
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

62058 (x_refsource_SECUNIA, third-party-advisory)
60895 (x_refsource_SECUNIA, third-party-advisory)
GLSA-201412-04 (vendor-advisory, x_refsource_GENTOO)
62303 (x_refsource_SECUNIA, third-party-advisory)
USN-2404-1 (x_refsource_UBUNTU, vendor-advisory, Vendor Advisory)
openSUSE-SU-2014:1471 (vendor-advisory, x_refsource_SUSE)
60010 (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)