Redhat - Ovirt-engine CVE

Filtered by vendor Redhat Subscribe

Filtered by product Ovirt-engine

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-0151	1 Redhat	1 Ovirt-engine	2019-11-06	6.8 MEDIUM	N/A
Cross-site request forgery (CSRF) vulnerability in oVirt Engine before 3.5.0 beta2 allows remote attackers to hijack the authentication of users for requests that perform unspecified actions via a REST API request.
CVE-2014-0152	2 Ovirt, Redhat	2 Ovirt, Ovirt-engine	2019-11-06	6.8 MEDIUM	N/A
Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors.

Vulnerabilities (CVE)