Vulnerabilities > Redhat > Enterprise Virtualization Host > 4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-31	CVE-2018-14652	Classic Buffer Overflow vulnerability in multiple products The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GF_XATTR_CLRLK_CMD' xattr in the 'pl_getxattr' function. network low complexity redhat debian CWE-120	6.5
2018-05-17	CVE-2018-1111	Command Injection vulnerability in multiple products DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. high complexity fedoraproject redhat CWE-77	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.