6.8
CVSSv2

CVE-2014-0152

Published: 08/09/2014 Updated: 06/11/2019
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and previous versions allows remote malicious users to hijack web sessions via unspecified vectors.

Affected Products

Vendor Product Versions
OvirtOvirt3.4.0
RedhatOvirt-engine3.0.0, 3.1.0, 3.2.0, 3.3.0, 3.3.2, 3.3.3, 3.3.4, 3.3.5, 3.4.0