oVirt Vdsm

CPE Details

oVirt Vdsm
-
2019-12-11
15h00 +00:00
2019-12-11
15h00 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ovirt:vdsm:-:*:*:*:*:*:*:*

Informations

Vendor

ovirt

Product

vdsm

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2012-5518 2019-11-25 12h06 +00:00 vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key (and certificate)
7.5
High
CVE-2018-10908 2018-08-09 17h00 +00:00 It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to consume unbounded amounts of memory of CPU time, causing a denial of service condition that could potentially impact other users of the host.
6.5
Medium