Arbitrary File Read Vulnerability in QEMU-NBD

Arbitrary File Read Vulnerability in QEMU-NBD

CVE-2013-1922 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

Learn more about our Web Application Penetration Testing UK.