CVE-2020-10731

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.

Published: Jul 31, 2020
Updated: Apr 13, 2023
CVE: CVE-2020-10731
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.9
AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
redhat / openstack_platform	16.1	16.1.x
redhat / openstack_platform	16.0	16.0.x
redhat / openstack_platform	15.0	15.0.x

https://bugzilla.redhat.com/show_bug.cgi?id=1831544

Vulnerability Database

289,599

CVE-2020-10731