CVE Vulnerabilities

CVE-2011-4316

Published: Jan 04, 2013 | Modified: Jan 07, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.7 LOW
AV:L/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, in certain unspecified conditions, does not lock the desktop screen between SPICE sessions, which allows local users with access to a virtual machine to gain access to other users desktop sessions via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Enterprise_virtualization_manager Redhat 2.1 2.1
Enterprise_virtualization_manager Redhat 2.2.3 2.2.3
Enterprise_virtualization_manager Redhat 2.2 2.2
Enterprise_virtualization_manager Redhat * 3.0

References