Unrated severityNVD Advisory· Published Jan 4, 2013· Updated Jun 16, 2026
CVE-2012-2696
CVE-2012-2696
Description
The backend in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1 does not properly check privileges, which allows remote authenticated users to query arbitrary information via a (1) SOAP or (2) GWT request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*range: <=3.0
- cpe:2.3:a:redhat:enterprise_virtualization_manager:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2.3:*:*:*:*:*:*:*
- Range: <3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.