Red Hat Enterprise Virtualization Manager (RHEVM) before 3.2 does not properly check permissions for the target storage domain, which allows attackers to cause a denial of service (disk space consumption) by cloning a VM from a snapshot.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Enterprise_virtualization_manager | Redhat | * | 3.1 (including) |
Enterprise_virtualization_manager | Redhat | 2.1 (including) | 2.1 (including) |
Enterprise_virtualization_manager | Redhat | 2.2 (including) | 2.2 (including) |
Enterprise_virtualization_manager | Redhat | 2.2.3 (including) | 2.2.3 (including) |
Enterprise_virtualization_manager | Redhat | 3.0 (including) | 3.0 (including) |