vulnerability
Rocky Linux: CVE-2020-14301: virt-rhel-and-virt-devel-rhel (RLSA-2020-4676)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | May 27, 2021 | Mar 12, 2024 | Aug 13, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
May 27, 2021
Added
Mar 12, 2024
Modified
Aug 13, 2025
Description
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the `dumpxml` command.
Solutions
rocky-upgrade-hivexrocky-upgrade-hivex-debuginforocky-upgrade-hivex-debugsourcerocky-upgrade-hivex-develrocky-upgrade-libguestfs-winsupportrocky-upgrade-libiscsirocky-upgrade-libiscsi-debuginforocky-upgrade-libiscsi-debugsourcerocky-upgrade-libiscsi-develrocky-upgrade-libiscsi-utilsrocky-upgrade-libiscsi-utils-debuginforocky-upgrade-libnbdrocky-upgrade-libnbd-debuginforocky-upgrade-libnbd-debugsourcerocky-upgrade-libnbd-develrocky-upgrade-libvirt-dbusrocky-upgrade-libvirt-dbus-debuginforocky-upgrade-libvirt-dbus-debugsourcerocky-upgrade-libvirt-python-debugsourcerocky-upgrade-nbdfuserocky-upgrade-nbdfuse-debuginforocky-upgrade-nbdkitrocky-upgrade-nbdkit-basic-filtersrocky-upgrade-nbdkit-basic-filters-debuginforocky-upgrade-nbdkit-basic-pluginsrocky-upgrade-nbdkit-basic-plugins-debuginforocky-upgrade-nbdkit-curl-pluginrocky-upgrade-nbdkit-curl-plugin-debuginforocky-upgrade-nbdkit-debuginforocky-upgrade-nbdkit-debugsourcerocky-upgrade-nbdkit-develrocky-upgrade-nbdkit-example-pluginsrocky-upgrade-nbdkit-example-plugins-debuginforocky-upgrade-nbdkit-gzip-pluginrocky-upgrade-nbdkit-gzip-plugin-debuginforocky-upgrade-nbdkit-linuxdisk-pluginrocky-upgrade-nbdkit-linuxdisk-plugin-debuginforocky-upgrade-nbdkit-python-pluginrocky-upgrade-nbdkit-python-plugin-debuginforocky-upgrade-nbdkit-serverrocky-upgrade-nbdkit-server-debuginforocky-upgrade-nbdkit-ssh-pluginrocky-upgrade-nbdkit-ssh-plugin-debuginforocky-upgrade-nbdkit-vddk-pluginrocky-upgrade-nbdkit-vddk-plugin-debuginforocky-upgrade-nbdkit-xz-filterrocky-upgrade-nbdkit-xz-filter-debuginforocky-upgrade-netcfrocky-upgrade-netcf-debuginforocky-upgrade-netcf-debugsourcerocky-upgrade-netcf-develrocky-upgrade-netcf-libsrocky-upgrade-netcf-libs-debuginforocky-upgrade-ocaml-hivexrocky-upgrade-ocaml-hivex-debuginforocky-upgrade-ocaml-hivex-develrocky-upgrade-ocaml-libnbdrocky-upgrade-ocaml-libnbd-debuginforocky-upgrade-ocaml-libnbd-develrocky-upgrade-perl-hivexrocky-upgrade-perl-hivex-debuginforocky-upgrade-perl-sys-virtrocky-upgrade-perl-sys-virt-debuginforocky-upgrade-perl-sys-virt-debugsourcerocky-upgrade-python3-hivexrocky-upgrade-python3-hivex-debuginforocky-upgrade-python3-libnbdrocky-upgrade-python3-libnbd-debuginforocky-upgrade-python3-libvirtrocky-upgrade-python3-libvirt-debuginforocky-upgrade-ruby-hivexrocky-upgrade-ruby-hivex-debuginforocky-upgrade-seabiosrocky-upgrade-sgabiosrocky-upgrade-superminrocky-upgrade-supermin-debuginforocky-upgrade-supermin-debugsourcerocky-upgrade-supermin-devel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.