Published: 04/01/2013 Updated: 13/02/2023

CVSS v2 Base Score: 6.2 | Impact Score: 10 | Exploitability Score: 1.9

VMScore: 552

Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C

Multiple untrusted search path vulnerabilities in Red Hat Enterprise Virtualization Manager (RHEV-M) prior to 3.1, when adding a host, allow local users to gain privileges via a Trojan horse (1) deployUtil.py or (2) vds_bootstrap.py Python module in /tmp/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise virtualization manager 2.2
redhat enterprise virtualization manager
redhat enterprise virtualization manager 2.2.3
redhat enterprise virtualization manager 2.1

Synopsis Important: rhev-310 vdsm security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic Updated vdsm packages are now available for Red Hat Enterprise Linux 63The Red Hat Security Response Team has rated this update as havingimportant security impact Common Vulnerab ...

Synopsis Important: Red Hat Enterprise Virtualization Manager 31 Type/Severity Security Advisory: Important Topic Red Hat Enterprise Virtualization Manager 31 is now availableThe Red Hat Security Response Team has rated this update as havingimportant security impact Common Vulnerability Scoring System ( ...

NVD-CWE-Other https://bugzilla.redhat.com/show_bug.cgi?id=790730 http://www.securityfocus.com/bid/56825 http://rhn.redhat.com/errata/RHSA-2012-1506.html http://rhn.redhat.com/errata/RHSA-2012-1508.html http://www.securitytracker.com/id?1027838 https://exchange.xforce.ibmcloud.com/vulnerabilities/80543 https://access.redhat.com/errata/RHSA-2012:1508 https://nvd.nist.gov

CVE-2012-0860

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect