Ovirt Node
by Ovirt
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-8170 | Hig | 0.57 | 8.8 | 0.01 | Sep 26, 2017 | ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, which allows remote authenticated users and physically proximate attackers to execute arbitrary commands via a ; (semicolon) in an input string. | |
| CVE-2013-0293 | 0.00 | — | 0.00 | Dec 10, 2019 | oVirt Node: Lock screen accepts F2 to drop to shell causing privilege escalation |
- risk 0.57cvss 8.8epss 0.01
ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, which allows remote authenticated users and physically proximate attackers to execute arbitrary commands via a ; (semicolon) in an input string.
- CVE-2013-0293Dec 10, 2019risk 0.00cvss —epss 0.00
oVirt Node: Lock screen accepts F2 to drop to shell causing privilege escalation