CVE-2018-10472 - CERT CVE
ID CVE-2018-10472
Sažetak An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
Reference
CVSS
Base: 1.9
Impact: 2.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL NONE NONE
CVSS vektor AV:L/AC:M/Au:N/C:P/I:N/A:N
Zadnje važnije ažuriranje 31-10-2018 - 10:30
Objavljeno 27-04-2018 - 15:29