Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:24833
HistoryApr 10, 2020 - 1:06 a.m.

Authorization Bypass

2020-04-1001:06:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

0.0004 Low

EPSS

Percentile

5.1%

JSON

virt-v2v is vulnerable to authorization bypass. The vulnerability exists as using virt-v2v to convert a guest that has a password-protected VNC console to a KVM guest removed that password protection from the converted guest: after conversion, a password was not required to access the converted guest’s VNC console. Now, converted guests will require the same VNC console password as the original guest. Note that when converting a guest to run on Red Hat Enterprise Virtualization, virt-v2v will display a warning that VNC passwords are not supported.

Related

cve 1
nessus 3
nvd 1
openvas 3
oraclelinux 1
prion 1
redhat 1
cvelist 1
cve
cve
CVE-2011-1773
2014-02-08 00:55:05
nessus
nessus
Scientific Linux Security Update : virt-v2v on SL6.x x86_64
2012-08-01 00:00:00
RHEL 6 : virt-v2v (RHSA-2011:1615)
2013-01-24 00:00:00
Oracle Linux 6 : virt-v2v (ELSA-2011-1615)
2023-09-07 00:00:00
nvd
nvd
CVE-2011-1773
2014-02-08 00:55:05
openvas
openvas
Oracle: Security Advisory (ELSA-2011-1615)
2015-10-06 00:00:00
RedHat Update for virt-v2v RHSA-2011:1615-03
2012-07-09 00:00:00
RedHat Update for virt-v2v RHSA-2011:1615-03
2012-07-09 00:00:00
oraclelinux
oraclelinux
virt-v2v security and bug fix update
2011-12-14 00:00:00
prion
prion
Authentication flaw
2014-02-08 00:55:00
redhat
redhat
(RHSA-2011:1615) Low: virt-v2v security and bug fix update
2011-12-06 00:00:00
cvelist
cvelist
CVE-2011-1773
2014-02-08 00:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for VERACODE:24833
cve1nessus3nvd1openvas3oraclelinux1prion1redhat1cvelist1