Vulnerabilities > Redhat > Ovirt Engine > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-03-13 | CVE-2018-1000095 | Cross-site Scripting vulnerability in Redhat Ovirt-Engine oVirt version 4.2.0 to 4.2.2 contains a Cross Site Scripting (XSS) vulnerability in the name/description of VMs portion of the web admin application. | 3.5 |
2018-03-06 | CVE-2018-1062 | Improper Cross-boundary Removal of Sensitive Data vulnerability in Redhat Ovirt-Engine A vulnerability was discovered in oVirt 4.1.x before 4.1.9, where the combination of Enable Discard and Wipe After Delete flags for VM disks managed by oVirt, could cause a disk to be incompletely zeroed when removed from a VM. | 3.5 |