A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. When a local user in the guest writes an executable file with SUID or SGID, none of these privileged bits are correctly dropped. As a result, in rare circumstances, this flaw could be used by malicious users in the guest to elevate their privileges within the guest and help a host local user to elevate privileges on the host.
Metrics
Affected Vendors & Products
References
History
Wed, 25 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2023-07-24T15:19:25.843Z
Updated: 2024-09-25T19:57:50.614Z
Reserved: 2023-03-14T10:31:59.556Z
Link: CVE-2023-1386
Vulnrichment
Updated: 2024-08-02T05:49:11.113Z
NVD
Status : Modified
Published: 2023-07-24T16:15:11.150
Modified: 2024-11-21T07:39:05.003
Link: CVE-2023-1386
Redhat