Vulnerability identifier: #VU43975
Vulnerability risk: Medium
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
libvirt
Universal components / Libraries /
Libraries used by multiple products
Vendor: libvirt.org
Description
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices.
Mitigation
Install update from vendor's website.
Vulnerable software versions
libvirt: 0.0.1 - 0.9.10
External links
https://rhn.redhat.com/errata/RHSA-2012-0748.html
https://rhn.redhat.com/errata/RHSA-2013-0127.html
https://www.openwall.com/lists/oss-security/2012/06/11/2
https://www.openwall.com/lists/oss-security/2012/06/11/3
https://www.redhat.com/archives/libvir-list/2012-April/msg01494.html
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.