CVE-2014-7851
Vulnerability CVE-2014-7851 affects oVirt 3.2.2–3.5.0 where restapi sessions are not invalidated after logout from webadmin, enabling remote authenticated users who know another user’s session data to assume that user’s privileges by swapping session tokens. Root cause: restapi session not invali...