Unrated severityNVD Advisory· Published Oct 18, 2014· Updated Jun 17, 2026
CVE-2014-3573
CVE-2014-3573
Description
The oVirt Engine backend module, as used in Red Hat Enterprise Virtualization Manager before 3.4.2, uses an "insecure DocumentBuilderFactory," which allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted XML/RSDL document, related to an XML External Entity (XXE) issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*Range: <=3.4.1
- Range: < 3.4.2
Patches
Vulnerability mechanics
References
2- rhn.redhat.com/errata/RHSA-2014-1161.htmlnvdVendor Advisory
- www.securitytracker.com/id/1030807nvd
News mentions
0No linked articles in our index yet.