Skip to main content

Vde

1 CVEs product

Monthly

CVE-2017-16638 CRITICAL Act Now

The Gentoo net-misc/vde package before version 2.3.2-r4 may allow members of the "qemu" group to gain root privileges by creating a hard link in a directory on which "chown" is called recursively by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Vde
NVD
CVSS 3.0
9.8
EPSS
0.2%
EPSS 0% CVSS 9.8
CRITICAL Act Now

The Gentoo net-misc/vde package before version 2.3.2-r4 may allow members of the "qemu" group to gain root privileges by creating a hard link in a directory on which "chown" is called recursively by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Vde
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy