Unrated severityNVD Advisory· Published Jul 11, 2014· Updated May 6, 2026
CVE-2014-3485
CVE-2014-3485
Description
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.
Affected products
1- cpe:2.3:a:redhat:enterprise_virtualization:3.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- rhn.redhat.com/errata/RHSA-2014-0814.htmlnvdVendor Advisory
- www.securitytracker.com/id/1030501nvd
News mentions
0No linked articles in our index yet.