3 matches found
Red Hat Enterprise Virtualization ovirt-node formatting string vulnerability
Red Hat Enterprise Virtualization RHEV is a suite of virtualization management solutions for servers and desktops enterprise virtualization platform from Red Hat, Inc. that provides live migration, load balancing, and more. ovirt-node is one of the open source virtualization management platform...
Input validation
ovirtsafedeleteconfig in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, which allows remote authenticated users and physically proximate attackers to execute arbitrary...
CVE-2014-8170
CVE-2014-8170 affects ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3. The issue stems from ovirt_safe_delete_config in ovirtfunctions.py (and other locations) not properly quoting input strings, enabling arbitrary command execution when a semicolon is included in...