#VU31937 Information disclosure in libvirt - CVE-2020-14301

Cybersecurity Help s.r.o.

Published: 2020-07-27

Vulnerability identifier: #VU31937

Vulnerability risk: Low

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2020-14301

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libvirt
Universal components / Libraries / Libraries used by multiple products

Vendor: libvirt.org

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due implementation of cookies for HTTP-based disks formatted them in the XML even if the VIR_DOMAIN_XML_SECURE was not present. A remote attacker can gain unauthorized access to sensitive information.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libvirt: 6.2.0

External links
https://security.libvirt.org/2020/0002.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Anolis OS update for virt:an module

Red Hat Enterprise Linux 8 update for the virt:rhel and virt-devel:rhel modules

Information disclosure in Libvirt