VDB
DEBIAN-CVE-2021-3631
DEBIAN-CVE-2021-3631
PUBLISHED
CVSS 6.300000190734863 MEDIUM
A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality and integrity.
Risk Scores
CVSS v3.1
6.300000190734863
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | libvirt | 7.0.0-3+deb11u2, 7.0.0-3, * |
| Debian:14 | libvirt | 0, 0, 0 |
| Debian:13 | libvirt | 0, 0, 0 |
| Debian:12 | libvirt | 0, 0, 0 |
Timeline
- Mar 2, 2022 CVE Published
- Apr 28, 2026 CVE Updated