CVE-2020-35497 · Vexday

CVE-2020-35497

EPSS 0.8%CWE-284

A flaw was found in ovirt-engine 4.4.3 and earlier allowing an authenticated user to read other users' personal information, including name, email and public SSH key.

Affected products

n/a · ovirt-engine

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.redhat.com/show_bug.cgi?id=1908755