vulnerability
Huawei EulerOS: CVE-2016-5008: libvirt security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jul 13, 2016 | Nov 30, 2017 | Aug 13, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jul 13, 2016
Added
Nov 30, 2017
Modified
Aug 13, 2025
Description
It was found that setting a VNC password to an empty string in libvirt did not disable all access to the VNC server as documented, instead it allowed access with no authentication required. An attacker could use this flaw to access a VNC server with an empty VNC password without any authentication.
Solutions
huawei-euleros-2_0_sp2-upgrade-libvirthuawei-euleros-2_0_sp2-upgrade-libvirt-clienthuawei-euleros-2_0_sp2-upgrade-libvirt-daemonhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-config-networkhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-config-nwfilterhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-interfacehuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-lxchuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-networkhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-nodedevhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-nwfilterhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-qemuhuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-secrethuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-driver-storagehuawei-euleros-2_0_sp2-upgrade-libvirt-daemon-kvm
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.