Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Libvirt | Libvirt | 0.4.1 | 0.4.1 |
Libvirt | Libvirt | 0.5.1 | 0.5.1 |
Libvirt | Libvirt | 0.4.6 | 0.4.6 |
Libvirt | Libvirt | 0.4.2 | 0.4.2 |
Libvirt | Libvirt | 0.3.3 | 0.3.3 |
Libvirt | Libvirt | 0.5.0 | 0.5.0 |
Libvirt | Libvirt | 0.3.2 | 0.3.2 |