Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple untrusted search path vulnerabilities in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when adding a host, allow local users to gain privileges via a Trojan horse (1) deployUtil.py or (2) vds_bootstrap.py Python module in /tmp/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat Enterprise Virtualization Manager 安全漏洞
Vulnerability Description
Red Hat Enterprise Virtualization Manager(RHEV-M)是美国红帽(Red Hat)公司的一款用于RHEV(企业虚拟化平台)的控制中心组件。该组件包含KVM工具,提供虚拟化管理功能。 Red Hat Enterprise Virtualization Manager存在安全漏洞,该漏洞源于添加到Red Hat企业虚拟环境时,配置主机的Python脚本会存储在/tmp目录中。攻击者可利用符号链接攻击提升权限。
CVSS Information
N/A
Vulnerability Type
N/A