CVE-2020-10731
CRITICALRed Hat OpenStack Platform 16 - Privilege Escalation
Title source: llmDescription
A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.
References (1)
Core 1
Core References
Issue Tracking, Vendor Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1831544
Scores
CVSS v3
9.9
EPSS
0.0028
EPSS Percentile
51.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-284
Status
published
Products (3)
redhat/openstack_platform
15.0
redhat/openstack_platform
16.0
redhat/openstack_platform
16.1
Published
Jul 31, 2020
Tracked Since
Feb 18, 2026