Unrated severityNVD Advisory· Published Sep 8, 2014· Updated Jun 17, 2026
CVE-2014-0153
CVE-2014-0153
Description
The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page.
Affected products
2Patches
Vulnerability mechanics
References
2- gerrit.ovirt.orgnvdPatch
- www.ovirt.org/Security_advisoriesnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.