CVE-2014-0028
EPSS 0.10%發布日:2014/1/24修改日:2026/4/28
也稱為:DEBIAN-CVE-2014-0028
描述
libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs and obtain sensitive domain object information via a request to the (1) virConnectDomainEventRegister and (2) virConnectDomainEventRegisterAny functions in the event registration API.
受影響套件(1)
- Debian/libvirtfrom 0, < 1.2.1-1