CyberSec.Space Logo
Back to CVE Browser

CVE-2020-10731

CRITICAL
9.9
CVSS Severity Score
EPSS Score0.0950%
EPSS Percentile7.12th
PublishedJul 31, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.

Affected Platforms (CPE)

📦
Redhat

Openstack Platform

= 15.0
📦
Redhat

Openstack Platform

= 16.0
📦
Redhat

Openstack Platform

= 16.1

References & Advisories

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1831544
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1831544

Related Vulnerabilities

CVE-2017-26379.9

A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable libvirtd based live-migration. L...

CVE-2021-385989.1

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver ...

CVE-2019-101388.8

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The nova...

CVE-2016-44748.8

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 (Liberty) director and Red Hat Enterprise Linux...