← Volver a CVEs
CVE-2024-7259
MEDIUM4.9
Descripcion
A flaw was found in oVirt. A user with administrator privileges, including users with the ReadOnlyAdmin permission, may be able to use browser developer tools to view Provider passwords in cleartext.
Detalles CVE
Puntuacion CVSS v3.14.9
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosHIGH
Interaccion usuarioNONE
Publicado9/26/2024
Ultima modificacion1/8/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
ovirt:ovirt-engineredhat:virtualization
Debilidades (CWE)
CWE-312
Referencias
https://access.redhat.com/security/cve/CVE-2024-7259(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=2314229(secalert@redhat.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.