CVE-2017-15114

CVE-2017-15114

When libvirtd is configured by OSP director (tripleo-heat-templates) to use the TLS transport it defaults to the same certificate authority as all non-libvirtd services. As no additional authentication is configured this allows these services to connect to libvirtd (which is equivalent to root access). If a vulnerability exists in another service it could, combined with this flaw, be exploited to escalate privileges to gain control over compute nodes.

Source: CVE-2017-15114

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다