CVE-2020-12430 : An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A

An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetStats libvirt API that is responsible for retrieving domain statistics when managing QEMU guests. This flaw allows unprivileged users with a read-only connection to cause a memory leak in the domstats command, resulting in a potential denial of service.

Published 2020-04-28 20:15:13

Updated 2024-04-01 13:16:04

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2020-12430

Probability of exploitation activity in the next 30 days: 0.19%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 56 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2020-12430

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:P	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2020-12430

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-12430

https://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=9bf9e0ae6af38c806f4672ca7b12a6b38d5a9581

libvirt / libvirt · GitLab
https://bugzilla.redhat.com/show_bug.cgi?id=1804548

1804548 – Possible memory leak when running domstats cmd
Issue Tracking;Permissions Required;Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D5GE6ISYUL3CIWO3FQRUGMKTKP2NYED2/

[SECURITY] Fedora 31 Update: libvirt-5.6.0-7.fc31 - package-announce - Fedora Mailing-Lists

CVEs referencing this url
https://usn.ubuntu.com/4371-1/

USN-4371-1: libvirt vulnerabilities | Ubuntu security notices
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5GE6ISYUL3CIWO3FQRUGMKTKP2NYED2/

[SECURITY] Fedora 31 Update: libvirt-5.6.0-7.fc31 - package-announce - Fedora Mailing-Lists

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=1828190

1828190 – (CVE-2020-12430) CVE-2020-12430 libvirt: memory leak in domstats may allow read-only user to perform DoS attack
Issue Tracking;Patch;Vendor Advisory
https://libvirt.org/git/?p=libvirt.git;a=commit;h=9bf9e0ae6af38c806f4672ca7b12a6b38d5a9581

libvirt.org Git - libvirt.git/commit
Patch;Vendor Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00000.html

[SECURITY] [DLA 3778-1] libvirt security update

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20200518-0003/

CVE-2020-12430 Libvirt Vulnerability in NetApp Products | NetApp Product Security

Products affected by CVE-2020-12430

Redhat » Enterprise Linux » Version: 8.0 Advanced Virtualization Edition
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*
Matching versions
Redhat » Libvirt
Versions from including (>=) 4.10.0 and before (<) 6.1.0
cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2020-12430

Exploit prediction scoring system (EPSS) score for CVE-2020-12430

CVSS scores for CVE-2020-12430

CWE ids for CVE-2020-12430

References for CVE-2020-12430

Products affected by CVE-2020-12430