QwikSec

Security Database

CVE

CWE

Training

CVE-2013-1922

Published: May 13, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

FEDORA-2013-6221

vendor-advisory

x_refsource_FEDORA

third-party-advisory

x_refsource_SECUNIA

FEDORA-2013-6185

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_GENTOO

FEDORA-2013-6211

vendor-advisory

x_refsource_FEDORA

[oss-security] 20130416 CVE-2013-1922 -- qemu: qemu-nbd block format auto-detection vulnerability

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_SECTRACK

[oss-security] 20130415 Xen Security Advisory 48 (CVE-2013-1922) - qemu-nbd format-guessing due to missing format specification

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.