Security Advisory

CVE-2017-1000256

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-10-31 15:00:00

Last updated 2024-08-05 22:00:39

Assigner mitre

State PUBLISHED

Description

libvirt version 2.3.0 and later is vulnerable to a bad default configuration of "verify-peer=no" passed to QEMU by libvirt resulting in a failure to validate SSL/TLS certificates by default.

← Browse all CVEs View on cve.org ↗