Vulnerabilities > CVE-2021-3631

047910
CVSS 6.3 - MEDIUM
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
NONE
local
high complexity
redhat
netapp
NVD
Published: 2022-03-02
Updated: 2024-11-21

Summary

A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality and integrity.

Vulnerable Configurations

Part Description Count
Application
Redhat
476
Application
Netapp
1
OS
Redhat
1

References