Vulnerability Details : CVE-2020-10701
A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response timeout. This flaw allows read-only connections to adjust the time that libvirt waits for the QEMU guest agent to respond to agent commands. Depending on the timeout value that is set, this flaw can make guest agent commands fail because the agent cannot respond in time. Unprivileged users with a read-only connection could abuse this flaw to set the response timeout for all guest agent messages to zero, potentially leading to a denial of service. This flaw affects libvirt versions before 6.2.0.
Vulnerability category: Denial of service
Products affected by CVE-2020-10701
- cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-10701
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 28 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-10701
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:N/I:N/A:P |
8.0
|
2.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2020-10701
-
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.Assigned by: secalert@redhat.com (Primary)
References for CVE-2020-10701
-
https://bugzilla.redhat.com/show_bug.cgi?id=1819163
1819163 – (CVE-2020-10701) CVE-2020-10701 libvirt: guest agent timeout can be set under read-only mode leading to DoSIssue Tracking;Patch;Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20210708-0001/
CVE-2020-10701 Libvirt Vulnerability in NetApp Products | NetApp Product SecurityThird Party Advisory
Jump to