Overview
- Description
- A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.
- Source
- secalert@redhat.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.9
- Impact score
- 6
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
- secalert@redhat.com
- CWE-284
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openstack_platform:15.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7716ED5D-8213-49E9-AAA6-8C4B45FFE3B0"
},
{
"criteria": "cpe:2.3:a:redhat:openstack_platform:16.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0C9F10E-F45D-4EA7-B39A-5298DDE84FCC"
},
{
"criteria": "cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DCC81071-B46D-4F5D-AC25-B4A4CCC20C73"
}
],
"operator": "OR"
}
]
}
]