Vulnerabilities > VDE Project > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-11-06 CVE-2017-16638 Incorrect Permission Assignment for Critical Resource vulnerability in VDE Project VDE
The Gentoo net-misc/vde package before version 2.3.2-r4 may allow members of the "qemu" group to gain root privileges by creating a hard link in a directory on which "chown" is called recursively by the OpenRC service script.
network
low complexity
vde-project CWE-732
critical
10.0