V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2020-25637
AST
MediumConfirmedExploit available

A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about ne…

CVSS
6.4
Medium
EPSS
0.01
p40
Published
2020-01-01
Updated
2020-01-01
Description

A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with limited ACL permissions could use this flaw to crash the libvirt daemon, resulting in a denial of service, or potentially escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Tags · CWE
CWE-415
Affected products
LibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtLibvirtVirtVirt-devel
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Timeline
2020-01-01
Published
2020-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: H
High (H)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.005 · p40
Known exploited (KEV)
No
Known exploits — Сканер-ВС
CVE-2020-25637
github-poc · https://github.com/brahmiboudjema/CVE-2020-25637-libvirt-double-free
Enterprise
Affected products
Debian
Libvirt
Canonical
Libvirt
Red Hat
LibvirtVirtVirt-devel
Группа Астра (РусБИТех)
Libvirt
Opensuse
Leap
ProductVendorStatus
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
libvirtTracked
virtTracked
virt-develTracked
Showing first 20 of 22
Source databases
AST
DEB
CVE
RED
UBU
Related vulnerabilities
BDU:2021-03736