CVE-2018-10472

Publication date

2018-04-27 15:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.