Back to search
CVE-2016-6338
Published: Apr 20, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
ovirt-engine-webadmin, as used in Red Hat Enterprise Virtualization Manager (aka RHEV-M) for Servers and RHEV-M 4.0, allows physically proximate attackers to bypass a webadmin session timeout restriction via vectors related to UI selections, which trigger repeating queries.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
92666
vdb-entry
x_refsource_BID
RHSA-2017:3427
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=1369285
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now