Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The snapshot merging functionality in Red Hat Enterprise Virtualization Manager (aka RHEV-M) before 2.2 does not properly pass the postzero parameter during operations on deleted volumes, which allows guest OS users to obtain sensitive information by examining the disk blocks associated with a deleted virtual machine.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat Enterprise Virtualization Manager Postzero参数信息泄露漏洞
Vulnerability Description
Red Hat Enterprise Virtualization Manager (又称RHEV-M) 2.2之前的版本的快照合并功能由于在删除卷的操作中没有正确的处理归零参数,guest操作系统用户可以借助检查与已经删除的虚拟机相关的磁盘碎片获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A