VYPR
Unrated severityNVD Advisory· Published Jan 4, 2013· Updated Jun 16, 2026

CVE-2012-2696

CVE-2012-2696

Description

The backend in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1 does not properly check privileges, which allows remote authenticated users to query arbitrary information via a (1) SOAP or (2) GWT request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*range: <=3.0
    • cpe:2.3:a:redhat:enterprise_virtualization_manager:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2.3:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.