libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read block and hang) via a crafted XML document containing an XML external entity declaration in conjunction. Rated low severity (CVSS 1.9).
Denial Of Service
XXE
Libvirt
Enterprise Virtualization
Opensuse
+1
NVD
CVSS 2.0
1.9
EPSS
0.1%
libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an XML external entity. Rated low severity (CVSS 1.2).
XXE
Enterprise Virtualization
Opensuse
Enterprise Linux
Libvirt
NVD
CVSS 2.0
1.2
EPSS
0.1%