QwikSec

Security Database

CVE

CWE

Training

CVE-2012-2693

Published: Jun 17, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20120611 Re: CVE request -- libvirt: address bus= device= when identicle vendor ID/product IDs usb devices attached are ignored

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_REDHAT

[libvirt] 20120428 [PATCH 0/3] usb devices with same vendor, productID hotplug support

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_REDHAT

[oss-security] 20120611 CVE request -- libvirt: address bus= device= when identicle vendor ID/product IDs usb devices attached are ignored

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.