CVE-2020-35497
published 2020-12-21CVE-2020-35497: A flaw was found in ovirt-engine 4.4.3 and earlier allowing an authenticated user to read other users' personal information, including name, email and public…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
A flaw was found in ovirt-engine 4.4.3 and earlier allowing an authenticated user to read other users' personal information, including name, email and public SSH key.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ovirt | ovirt-engine | <= 4.4.3 | — |
| ovirt | ovirt-engine | — | — |
| redhat | virtualization | — | — |