redhat libvirt CVE-2021-3631 vulnerability in Red Hat and Other Products
Published on March 2, 2022

product logo product logo product logo
A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality and integrity.

Vendor Advisory NVD

Weakness Type

Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. When a resource is given a permissions setting that provides access to a wider range of actors than required, it could lead to the exposure of sensitive information, or the modification of that resource by unintended parties. This is especially dangerous when the resource is related to program configuration, execution or sensitive user data.


Products Associated with CVE-2021-3631

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-3631 are published in these products:

Red Hat Libvirt
 
Red Hat Openshift Container Platform
 
Red Hat Enterprise Linux (RHEL)
 
Canonical Ubuntu Linux
 
NetApp Ontap Select Deploy Administration Utility
 

Exploit Probability

EPSS
0.07%
Percentile
20.66%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.