Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, in certain unspecified conditions, does not lock the desktop screen between SPICE sessions, which allows local users with access to a virtual machine to gain access to other users' desktop sessions via unspecified vectors.
References
Advertisement
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-01-04 14:55
Updated : 2013-01-07 06:54
NVD link : CVE-2011-4316
Mitre link : CVE-2011-4316
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Advertisement
Products Affected
redhat
- enterprise_virtualization_manager