Ovirt-engine-sdk » 3.1.0.5 : Security Vulnerabilities, CVEs, CVSS score >= 5
The python SDK before 3.1.0.6 and CLI before 3.1.0.8 for oVirt 3.1 does not check the server SSL certificate against the client keys, which allows remote attackers to spoof a server via a man-in-the-middle (MITM) attack.
Max CVSS
5.0
EPSS Score
0.29%
Published
2012-08-31
Updated
2017-08-29
1 vulnerabilities found