14 matches found
EUVD-2014-3541
Malware in sbrugna...
EUVD-2025-22917
Malicious code in bioql PyPI...
CVE-2025-54537
In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots...
CVE-2025-54537
In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots...
CVE-2025-54537
In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots...
CVE-2025-54537
In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots...
CVE-2025-54537
CVE-2025-54537 affects JetBrains TeamCity versions prior to 2025.07. The issue is that user credentials were stored in plain text in memory snapshots, enabling potential disclosure of credentials if memory snapshots are accessed. The vulnerability impact is described as information disclosure wit...
PT-2025-31127 · Jetbrains · Teamcity
Name of the Vulnerable Software and Affected Versions: TeamCity versions prior to 2025.07 Description: User credentials were stored in plain text in memory snapshots. Recommendations: Update to version 2025.07 or later...
Design/Logic Flaw
The oVirt storage backend in Red Hat Enterprise Virtualization 3.4 does not wipe memory snapshots when deleting a VM, even when wipe-after-delete WAD is configured for the VM's disk, which allows remote authenticated users with certain credentials to read portions of the deleted VM's memory and...
CVE-2014-3559
The oVirt storage backend in Red Hat Enterprise Virtualization 3.4 does not wipe memory snapshots when deleting a VM, even when wipe-after-delete WAD is configured for the VM's disk, which allows remote authenticated users with certain credentials to read portions of the deleted VM's memory and...
CVE-2014-3559
The CVE affects Red Hat Enterprise Virtualization (oVirt storage backend). Root cause: memory snapshots are not wiped on VM deletion, even with wipe-after-delete enabled, allowing remote authenticated users to read portions of a VM’s memory from an uninitialized storage volume. Impact per provide...
PT-2014-5395 · Red Hat · Red Hat Enterprise Virtualization
Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Virtualization version 3.4 Description: The issue concerns the oVirt storage backend, which fails to wipe memory snapshots when a virtual machine VM is deleted, even if wipe-after-delete WAD is configured for the VM's disk...
Moderate: Red Hat Security Advisory: rhevm security update
Updated rhevm packages that fix one security issue are now available. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available from the CVE link in the...
ovirt-engine-backend: memory snapshots not wiped when deleting a VM with wipe-after-delete (WAD) enabled for its disks
It was found that the oVirt storage back end did not wipe memory snapshots when VMs were deleted, even if wipe-after-delete WAD was enabled for the VM's disks. A remote attacker with credentials to create a new VM could use this flaw to potentially access the contents of memory snapshots in an...