N/A

cfme-gemset versions 5.10.4.3 and below, 5.9.9.3 and below are vulnerable to a data leak, due to an improper authorization in the migration log controller. An attacker with access to an unprivileged user can access all VM migration logs available.

N/A

授权机制不恰当

cfme-gemset 授权问题漏洞

cfme-gemset是一个迁移日志控制器。 cfme-gemset 5.10.4.3及之前版本和5.9.9.3及之前版本中存在授权问题漏洞。该漏洞源于网络系统或产品的日志文件非正常输出。

N/A

N/A