CVE-2020-14316 - A flaw was found in kubevirt 0.29 and earlier. Virtual Machine Instances - CVEs Blog

A flaw was found in kubevirt 0.29 and earlier. Virtual Machine Instances (VMIs) can be used to gain access to the host’s filesystem. Successful exploitation allows an attacker to assume the privileges of the VM process on the host system. In worst-case scenarios an attacker can read and modify any file on the system where the VMI is running. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14316

Reference (s):

https://bugzilla.redhat.com/show_bug.cgi?id=1848951
URL: https://bugzilla.redhat.com/show_bug.cgi?id=1848951

CVE-2020-14316 – A flaw was found in kubevirt 0.29 and earlier. Virtual Machine Instances

Something Fresh

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

CVE-2020-27216 - In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 1

CVE-2020-27212 - STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect acce

What People Reading

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

CVE-2020-27212 - STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect acce

CVE-2015-0320 - Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and

CVE-2020-26212 - GLPI stands for Gestionnaire Libre de Parc Informatique and it is a Free

CVE-2020-27207 - Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlci

Categories

Partners

Just add here your partners image or promo text