Vulnerability CVE-2019-10183

Vulnerability Name:

CVE-2019-10183 (CCN-163296)

Assigned:

2019-07-02

Published:

2019-07-02

Updated:

2023-02-12

Summary:

Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments, thus leaking them to others users on the system via process listing. It was introduced recently in the virt-manager v2.2.0 release.

CVSS v3 Severity:

3.3 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
2.9 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): None

2.8 Low (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N)
2.5 Low (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-200

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2019-10183

Source: secalert@redhat.com
Type: Third Party Advisory, VDB Entry
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: Issue Tracking, Vendor Advisory
secalert@redhat.com

Source: XF
Type: UNKNOWN
virtinstall-cve201910183-info-disc(163296)

Source: CCN
Type: oss-sec Mailing List, Wed, 3 Jul 2019 12:23:21 +0530 (IST)
CVE-2019-10183 virt-install: unattended option leaks password via command line argument

Source: CCN
Type: virt-tools-list Web page
[virt-tools-list] [virt-manager PATCH 1/2] unattended: Read the passwords from a file

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201910183	V	CVE-2019-10183	2022-09-02
oval:org.opensuse.security:def:633	P	Security update for gimp (Moderate)	2022-08-01
oval:org.opensuse.security:def:94251	P	(Important)	2022-07-06
oval:org.opensuse.security:def:3533	P	java-1_7_1-ibm-1.7.1_sr4.50-38.41.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95163	P	virt-install-4.0.0-150400.1.5 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:379	P	virt-install-4.0.0-150400.1.5 on GA media (Moderate)	2022-06-10
oval:org.opensuse.security:def:1664	P	Security update for apache2-mod_auth_mellon (Moderate)	2022-05-04
oval:org.opensuse.security:def:113571	P	virt-install-3.2.0-10.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:106957	P	virt-install-3.2.0-10.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:66920	P	Security update for openssl-1_1 (Low)	2021-09-07
oval:org.opensuse.security:def:70276	P	Security update for libass (Important)	2021-08-20
oval:org.opensuse.security:def:2294	P	virt-install-3.2.0-5.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101409	P	virt-install-3.2.0-5.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63383	P	virt-install-3.2.0-5.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:100964	P	libpython3_6m1_0-3.6.13-3.78.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:66828	P	Security update for containerd, docker, runc (Important)	2021-06-11
oval:org.opensuse.security:def:73611	P	Security update for p7zip (Moderate)	2021-05-04
oval:org.opensuse.security:def:70171	P	Security update for openssl-1_0_0 (Important)	2020-12-11
oval:org.opensuse.security:def:63309	P	virt-install-2.2.1-8.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107630	P	virt-install-2.2.1-8.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117188	P	virt-install-2.2.1-8.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2220	P	virt-install-2.2.1-8.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:50051	P	apache2-mod_wsgi-python3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50105	P	virt-install on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73493	P	crash on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20193464	P	RHSA-2019:3464: virt-manager security, bug fix, and enhancement update (Low)	2019-11-05
oval:com.ubuntu.cosmic:def:2019101830000000	V	CVE-2019-10183 on Ubuntu 18.10 (cosmic) - medium.	2019-07-03
oval:com.ubuntu.bionic:def:2019101830000000	V	CVE-2019-10183 on Ubuntu 18.04 LTS (bionic) - medium.	2019-07-03
oval:com.ubuntu.xenial:def:2019101830000000	V	CVE-2019-10183 on Ubuntu 16.04 LTS (xenial) - medium.	2019-07-03

BACK