| Max CVSS | 4.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-4600 | 4.3 |
The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote attackers to bypass intended access restriction
|
13-02-2023 - 03:23 | 14-04-2016 - 15:59 | |
| CVE-2014-8136 | 2.1 |
The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.
|
13-02-2023 - 00:43 | 19-12-2014 - 15:59 | |
| CVE-2015-0236 | 3.5 |
libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interf
|
12-02-2023 - 23:15 | 29-01-2015 - 15:59 | |
| CVE-2015-5247 | 4.0 |
The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows remote authenticated users with a read-write connection to cause a denial of service (libvirtd crash) by triggering a failed unlink after creating a volume on a root_squash NFS po
|
18-04-2016 - 18:37 | 14-04-2016 - 15:59 |