CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-10703

A NULL pointer dereference was found in the libvirt API responsible introduced in upstream version 3.10.0, and fixed in libvirt 6.0.0, for fetching a storage pool based on its target path. In more detail, this flaw affects storage pools created without a target path such as network-based pools like gluster and RBD. Unprivileged users with a read-only connection could abuse this flaw to crash the libvirt daemon, resulting in a potential denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.7%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2020-10703

Redhat » Libvirt » Version: 3.10.0

cpe:2.3:a:redhat:libvirt:3.10.0
Redhat » Libvirt » Version: 4.0.0

cpe:2.3:a:redhat:libvirt:4.0.0
Redhat » Libvirt » Version: 4.1.0

cpe:2.3:a:redhat:libvirt:4.1.0
Redhat » Libvirt » Version: 4.10.0

cpe:2.3:a:redhat:libvirt:4.10.0
Redhat » Libvirt » Version: 4.2.0

cpe:2.3:a:redhat:libvirt:4.2.0
Redhat » Libvirt » Version: 4.3.0

cpe:2.3:a:redhat:libvirt:4.3.0
Redhat » Libvirt » Version: 4.4.0

cpe:2.3:a:redhat:libvirt:4.4.0
Redhat » Libvirt » Version: 4.5.0

cpe:2.3:a:redhat:libvirt:4.5.0
Redhat » Libvirt » Version: 4.6.0

cpe:2.3:a:redhat:libvirt:4.6.0
Redhat » Libvirt » Version: 4.7.0

cpe:2.3:a:redhat:libvirt:4.7.0
Redhat » Libvirt » Version: 4.8.0

cpe:2.3:a:redhat:libvirt:4.8.0
Redhat » Libvirt » Version: 4.9.0

cpe:2.3:a:redhat:libvirt:4.9.0
Redhat » Libvirt » Version: 5.0.0

cpe:2.3:a:redhat:libvirt:5.0.0
Redhat » Libvirt » Version: 5.1.0

cpe:2.3:a:redhat:libvirt:5.1.0
Redhat » Libvirt » Version: 5.10.0

cpe:2.3:a:redhat:libvirt:5.10.0
Redhat » Libvirt » Version: 5.2.0

cpe:2.3:a:redhat:libvirt:5.2.0
Redhat » Libvirt » Version: 5.3.0

cpe:2.3:a:redhat:libvirt:5.3.0
Redhat » Libvirt » Version: 5.4.0

cpe:2.3:a:redhat:libvirt:5.4.0
Redhat » Libvirt » Version: 5.5.0

cpe:2.3:a:redhat:libvirt:5.5.0
Redhat » Libvirt » Version: 5.6.0

cpe:2.3:a:redhat:libvirt:5.6.0
Redhat » Libvirt » Version: 5.7.0

cpe:2.3:a:redhat:libvirt:5.7.0
Redhat » Libvirt » Version: 5.8.0

cpe:2.3:a:redhat:libvirt:5.8.0
Redhat » Libvirt » Version: 5.9.0

cpe:2.3:a:redhat:libvirt:5.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-10703

Products

Pricing

Contact Us