Vulnerabilities in The libvirt Project

3 results

CVE-2017-2635HIGHA NULL pointer deference flaw was found in the way libvirt from 2.5.0 to 3.0.0 handled empty drives. A remote authenticated attacker could uEPSS 1.5%CVE-2019-3840MEDIUMA NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU ageEPSS 1.5%CVE-2019-3886MEDIUMAn incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on thEPSS 1.1%