CVE-2024-31144

CVSS 3.1 Score 3.8 of 10 (low)

Details

Published Feb 14, 2025

Updated: Feb 18, 2025

Summary

CVE-2024-31144 is a vulnerability affecting Xapi, a component used for managing metadata backups and restores of Virtual Machines and Storage Repositories. Malicious guests can manipulate their disk to appear as a legitimate metadata backup, potentially gaining unauthorized access to metadata. Although the content of Virtual Disk Images (VDIs) is typically controlled by the VM owner, guests cannot choose their UUIDs. A guest with one disk has a 50% chance of sorting ahead of the legitimate metadata backup, while one with two disks has a 75% chance. The host administrator, in the process of locating metadata VDIs, mounts and checks each one for a suitable metadata file, making it possible for a malicious guest to deceive the system and gain unintended access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database