Hi list,
We recently found a vulnerability affecting Proxmox VE < 3.2 that allows
an unauthenticated user to perform user enumeration. Vendor was
contacted and the vulnerability fixed in Proxmox VE 3.2, released on
2014-03-10.
References:
We would like to request 1 CVE for this vulnerability.
– Damien Cauquil R&D Director CHFI | CEH | ECSA | CEI Sysdream 108 avenue Gabriel Peri 93400 Saint Ouen Tel: +33 (0) 1 78 76 58 21 www.sysdream.com