Vulnerabilities (CVE)

Filtered by vendor Ovirt Subscribe
Filtered by product Ovirt-node
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-8170 2 Ovirt, Redhat 2 Ovirt-node, Enterprise Virtualization 2024-11-21 9.0 HIGH 8.8 HIGH
ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, which allows remote authenticated users and physically proximate attackers to execute arbitrary commands via a ; (semicolon) in an input string.