redhat libvirt CVE-2016-5008 in Red Hat and Debian Products
Published on July 13, 2016

product logo product logo
libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is set to an empty string, which allows remote attackers to bypass authentication and establish a VNC session by connecting to the server.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2016-5008

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2016-5008 are published in these products:

Red Hat Libvirt
 
Debian Linux
 

Exploit Probability

EPSS
2.12%
Percentile
83.86%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.