6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:N/A:C
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.4%
Red Hat Enterprise Virtualization (RHEV) Manager before 3.5.1 ignores the permission to deny snapshot creation during live storage migration between domains, which allows remote authenticated users to cause a denial of service (prevent host start) by creating a long snapshot chain.
CPE | Name | Operator | Version |
---|---|---|---|
redhat:enterprise_virtualization_manager | redhat enterprise virtualization manager | le | 3.5.0 |