CVE-2020-15708

Ubuntu's packaging of libvirt in 20.04 LTS created a control socket with world read and write permissions. An attacker could use this to overwrite arbitrary files or execute arbitrary code.
References
Link Resource
https://usn.ubuntu.com/usn/usn-4452-1 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

History

No history.

Information

Published : 2020-11-06 02:15

Updated : 2024-02-08 17:33


NVD link : CVE-2020-15708

Mitre link : CVE-2020-15708

CVE.ORG link : CVE-2020-15708


JSON object : View

Products Affected

canonical

  • ubuntu_linux
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource