NVD

Id
11987  
Name
CVE-2010-0431  
Description
QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.  
Reject
 
CVSS Version
2  
CVSS Score
6.6  
Severity
Medium  
CVSS Base Score
6.6  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
2.7  
CVSS Vector
(AV:L/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-08-24  
Modified Date
2010-08-25  
Seq
2010-0431  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
66112 11987 CVE-2010-0431 https://bugzilla.redhat.com/show_bug.cgi?id=568809  View
66113 11987 CVE-2010-0431 RHSA-2010:0622  View
66114 11987 CVE-2010-0431 RHSA-2010:0627  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36183 JVNDB-2010-001963 QEMU-KVM のゲスト QXL ドライバポインタにおける権限を取得される脆弱性 QEMU-KVM は、ゲスト QXL ドライバポインタを適切に検証しないため、サービス運用妨害 (DoS) 状態となる、または権限を取得される脆弱性が存在します。 CVE-2010-0431 43011 CVE-2010-0431 11987 6.6 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001963.html 2010-08-19 2010-09-07 View