Skip to main content

Vdsm

3 CVEs product

Monthly

CVE-2022-0207 MEDIUM PATCH This Month

A race condition was found in vdsm. Rated medium severity (CVSS 4.7).

Race Condition Information Disclosure Vdsm Virtualization Virtualization For Ibm Power Little Endian +1
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2019-3831 MEDIUM PATCH This Month

A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Vdsm Gluster Storage
NVD
CVSS 3.1
6.7
EPSS
1.0%
CVE-2018-10908 MEDIUM PATCH This Month

It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. Rated medium severity (CVSS 6.3), this vulnerability is no authentication required, low attack complexity.

Denial Of Service Vdsm Virtualization
NVD
CVSS 3.0
6.3
EPSS
1.2%
EPSS 0% CVSS 4.7
MEDIUM PATCH This Month

A race condition was found in vdsm. Rated medium severity (CVSS 4.7).

Race Condition Information Disclosure Vdsm +3
NVD
EPSS 1% CVSS 6.7
MEDIUM PATCH This Month

A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Vdsm Gluster Storage
NVD
EPSS 1% CVSS 6.3
MEDIUM PATCH This Month

It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. Rated medium severity (CVSS 6.3), this vulnerability is no authentication required, low attack complexity.

Denial Of Service Vdsm Virtualization
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy