VNC Password Vulnerability in Apache CloudStack KVM Migration
CVE-2015-3252

9.8CRITICAL

Key Information:

Vendor

Apache
Status
Cloudstack
Vendor
CVE Published:
8 February 2016

What is CVE-2015-3252?

A vulnerability in Apache CloudStack prior to version 4.5.2 allows for improper handling of VNC passwords during the migration of KVM virtual machines. This flaw permits remote attackers to access the VNC server, compromising the security of the virtual environment. This situation arises from the failure to properly preserve VNC credentials, potentially leading to unauthorized access and control over the migrated virtual machines.

References

https://blogs.apache.org/cloudstack/entry/two_late_announ...
x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/537459/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://mail-archives.apache.org/mod_mbox/cloudstack-users...
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.