CNNVD-202510-2299 Information

CNNVD ID

CNNVD-202510-2299

Related CVE

CVE-2025-61553

• CNNVD Published: 2025-10-16

Description (Chinese)

BitVisor是BitVisor开源的一个虚拟机监控程序。 BitVisor 108df6版本至480907版本存在安全漏洞，该漏洞源于VirtIO网络设备模拟中存在越界写入，可能导致拒绝服务攻击，在特权管理程序环境中还可能执行任意代码或导致客户机到主机权限提升。

Description (English)

BitVisor is a virtual machine monitoring program for BitVisor open source. There is a security gap between BitVisor 108 df6 and 480907, which stems from the cross-border writing in the VirtIO network device simulation, which may lead to a denial of service attack and, in the context of the privileges management process, to the enforcement of arbitrary codes or to the upgrading of the client ’ s access to the host.

Hazard Level

High

Vulnerability Type

其他

Published

2025-10-16

Last Modified

2026-02-24

References

https://github.com/retrage/advisories/blob/main/CVE-2025-61553/README.md https://sourceforge.net/p/bitvisor/code/ci/48090711ade5910b601d2b0034859a6a890cc82d/