Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Cfme-gemset
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10159 1 Redhat 2 Cfme-gemset, Cloudforms 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
cfme-gemset versions 5.10.4.3 and below, 5.9.9.3 and below are vulnerable to a data leak, due to an improper authorization in the migration log controller. An attacker with access to an unprivileged user can access all VM migration logs available.