← back
CVE-2016-6338

CVE-2016-6338

EPSS 0.5%
ovirt-engine-webadmin, as used in Red Hat Enterprise Virtualization Manager (aka RHEV-M) for Servers and RHEV-M 4.0, allows physically proximate attackers to bypass a webadmin session timeout restriction via vectors related to UI selections, which trigger repeating queries.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/errata/RHSA-2017:3427https://bugzilla.redhat.com/show_bug.cgi?id=1369285http://www.securityfocus.com/bid/92666