Red Hat Enterprise Virtualization (RHEV) Manager before 3.5.1 uses weak permissions on the directories shared by the ovirt-engine-dwhd service and a plugin during service startup, which allows local users to obtain sensitive information by reading files in the directory.
CPE | Name | Operator | Version |
---|---|---|---|
enterprise_virtualization_manager | le | 3.5.0 |