Описание
oVirt users with MANIPULATE_STORAGE_DOMAIN permissions can attach a storage domain to any data-center
Отчет
This issue affects the versions of ovirt-engine-backend as shipped with Red Hat Enterprise Virtualization 3. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Virtualization 3 | ovirt-engine-backend | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-285
https://bugzilla.redhat.com/show_bug.cgi?id=1199389oVirt: Users with MANIPULATE_STORAGE_DOMAIN can attach a storage domain to any data-center
3.5 Low
CVSS2
Связанные уязвимости
CVSS3: 6.5
nvd
около 6 лет назад
oVirt users with MANIPULATE_STORAGE_DOMAIN permissions can attach a storage domain to any data-center
github
больше 3 лет назад
oVirt users with MANIPULATE_STORAGE_DOMAIN permissions can attach a storage domain to any data-center
3.5 Low
CVSS2