2 matches found
CVE-2013-4280
CVE-2013-4280 affects RedHat vsdm 4.9.6 with an insecure temporary file vulnerability. The vulnerability’s impact is limited to integrity (I:H) with no confidentiality or availability impact per CVSS. It is a local-attack, low-complexity issue without required user interaction. Connected Nessus d...
CVE-2014-8167
CVE-2014-8167 affects vdsm and vdsclient; the root cause is missing hostname validation when communicating with another vdsm, which could allow a man-in-the-middle attack. The connected sources confirm the vulnerable component and the behavioral flaw, but do not provide a patch version or mitigat...