vulnerability
Alma Linux: CVE-2020-14301: Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update (ALSA-2020-4676)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | May 27, 2021 | May 4, 2022 | Mar 31, 2026 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
May 27, 2021
Added
May 4, 2022
Modified
Mar 31, 2026
Description
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the `dumpxml` command.
Solutions
alma-upgrade-hivexalma-upgrade-hivex-develalma-upgrade-libguestfs-winsupportalma-upgrade-libiscsialma-upgrade-libiscsi-develalma-upgrade-libiscsi-utilsalma-upgrade-libnbdalma-upgrade-libnbd-develalma-upgrade-libvirtalma-upgrade-libvirt-adminalma-upgrade-libvirt-bash-completionalma-upgrade-libvirt-clientalma-upgrade-libvirt-daemonalma-upgrade-libvirt-daemon-config-networkalma-upgrade-libvirt-daemon-config-nwfilteralma-upgrade-libvirt-daemon-driver-interfacealma-upgrade-libvirt-daemon-driver-networkalma-upgrade-libvirt-daemon-driver-nodedevalma-upgrade-libvirt-daemon-driver-nwfilteralma-upgrade-libvirt-daemon-driver-secretalma-upgrade-libvirt-daemon-driver-storagealma-upgrade-libvirt-daemon-driver-storage-corealma-upgrade-libvirt-daemon-driver-storage-diskalma-upgrade-libvirt-daemon-driver-storage-iscsialma-upgrade-libvirt-daemon-driver-storage-iscsi-directalma-upgrade-libvirt-daemon-driver-storage-logicalalma-upgrade-libvirt-daemon-driver-storage-mpathalma-upgrade-libvirt-daemon-driver-storage-rbdalma-upgrade-libvirt-daemon-driver-storage-scsialma-upgrade-libvirt-dbusalma-upgrade-libvirt-develalma-upgrade-libvirt-docsalma-upgrade-libvirt-libsalma-upgrade-libvirt-nssalma-upgrade-nbdfusealma-upgrade-nbdkitalma-upgrade-nbdkit-bash-completionalma-upgrade-nbdkit-basic-filtersalma-upgrade-nbdkit-basic-pluginsalma-upgrade-nbdkit-curl-pluginalma-upgrade-nbdkit-develalma-upgrade-nbdkit-example-pluginsalma-upgrade-nbdkit-gzip-pluginalma-upgrade-nbdkit-linuxdisk-pluginalma-upgrade-nbdkit-python-pluginalma-upgrade-nbdkit-serveralma-upgrade-nbdkit-ssh-pluginalma-upgrade-nbdkit-vddk-pluginalma-upgrade-nbdkit-xz-filteralma-upgrade-netcfalma-upgrade-netcf-develalma-upgrade-netcf-libsalma-upgrade-ocaml-hivexalma-upgrade-ocaml-hivex-develalma-upgrade-ocaml-libguestfsalma-upgrade-ocaml-libguestfs-develalma-upgrade-ocaml-libnbdalma-upgrade-ocaml-libnbd-develalma-upgrade-perl-hivexalma-upgrade-perl-sys-virtalma-upgrade-python3-hivexalma-upgrade-python3-libnbdalma-upgrade-python3-libvirtalma-upgrade-ruby-hivexalma-upgrade-seabiosalma-upgrade-seabios-binalma-upgrade-seavgabios-binalma-upgrade-sgabiosalma-upgrade-sgabios-binalma-upgrade-superminalma-upgrade-supermin-devel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.