Medium severity4.8OSV Advisory· Published Mar 13, 2018· Updated Jun 17, 2026
CVE-2018-1000095
CVE-2018-1000095
Description
oVirt version 4.2.0 to 4.2.2 contains a Cross Site Scripting (XSS) vulnerability in the name/description of VMs portion of the web admin application. This vulnerability appears to have been fixed in version 4.2.3.
Affected products
2- Range: ovirt-engine-4.2.0, ovirt-engine-4.2.0.1, ovirt-engine-4.2.0.2, …
Patches
Vulnerability mechanics
References
2- gerrit.ovirt.orgnvdPatch
- gerrit.ovirt.org/c/87265/nvdIssue Tracking
News mentions
0No linked articles in our index yet.