CVE-2017-7493

Summary

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing virtfs metadata files in mapped-file security mode. A guest user could use this flaw to escalate their privileges inside guest.

Affected Software

VendorProductVersion RangeStatus
QEMUqemu2.7.4affected

Weaknesses

  • Improper access control issue

ADP Enrichment

CVE Program Container

Additional References

References