Cross-site scripting (XSS) vulnerability in the addAlert function in the RedirectServlet servlet in oVirt Engine and Red Hat Enterprise Virtualization Manager (RHEV-M), as used in Red Hat Enterprise Virtualization 3 and 3.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
enterprise_virtualization | eq | 3.2 | |
enterprise_virtualization | eq | 3.0 |