Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2019/04/30 5:0 p.m.4 views

openstack-cinder: Data retained after deletion of a ScaleIO volume

An information-leak flaw was found in openstack-cinder deployments using the third-party EMC ScaleIO backend. It was possible for new volumes to contain previous data if they were created from storage pools which had disabled zero-padding. An attacker could exploit this flaw to obtain sensitive...

7.5CVSS5.7AI score0.01244EPSS
Exploits0References5
Prion
Prion
added 2010/06/24 5:30 p.m.17 views

Design/Logic Flaw

The snapshot merging functionality in Red Hat Enterprise Virtualization Manager aka RHEV-M before 2.2 does not properly pass the postzero parameter during operations on deleted volumes, which allows guest OS users to obtain sensitive information by examining the disk blocks associated with a...

2.1CVSS6.4AI score0.00327EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2010/06/24 5:0 p.m.45 views

CVE-2010-2224

CVE-2010-2224 affects Red Hat Enterprise Virtualization Manager (RHEV-M) prior to version 2.2. The issue is that the snapshot merging function does not properly pass the postzero parameter during operations on deleted volumes, which can allow a guest OS to read (inspecting) disk blocks belonging ...

2.1CVSS6.1AI score0.00327EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/06/24 5:0 p.m.18 views

CVE-2010-2224

The snapshot merging functionality in Red Hat Enterprise Virtualization Manager aka RHEV-M before 2.2 does not properly pass the postzero parameter during operations on deleted volumes, which allows guest OS users to obtain sensitive information by examining the disk blocks associated with a...

6AI score0.00327EPSS
Exploits0References3
Rows per page
Query Builder