CVE-2020-12430 vulnerability in Red Hat Products
Published on April 28, 2020

An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetStats libvirt API that is responsible for retrieving domain statistics when managing QEMU guests. This flaw allows unprivileged users with a read-only connection to cause a memory leak in the domstats command, resulting in a potential denial of service.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2020-12430

stack.watch emails you whenever new vulnerabilities are published in Red Hat Libvirt or Red Hat Enterprise Linux (RHEL). Just hit a watch button to start following.

Red Hat Libvirt

Red Hat Enterprise Linux (RHEL)

Exploit Probability

EPSS

0.86%

Percentile

74.80%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-12430 vulnerability in Red Hat ProductsPublished on April 28, 2020

Products Associated with CVE-2020-12430

Exploit Probability

CVE-2020-12430 vulnerability in Red Hat Products
Published on April 28, 2020