Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote attackers to bypass intended access restrictions via a (1) DNS or (2) DHCP query.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat libvirt 安全绕过漏洞
Vulnerability Description
Red Hat libvirt是美国红帽(Red Hat)公司的一个用于实现Linux虚拟化功能的Linux API,它支持各种Hypervisor,包括Xen和KVM,以及QEMU和用于其他操作系统的一些虚拟产品。 Red Hat libvirt 0.9.9之前版本的network/bridge_driver.c文件中的‘networkReloadIptablesRules’函数存在安全漏洞,该漏洞源于libvirtd重启时,程序没有正确处理桥接网络中的防火墙规则。远程攻击者可借助DNS或DHCP查询利
CVSS Information
N/A
Vulnerability Type
N/A