Vulnerability CVE-2016-6338


Published: 2017-04-20

Description:
ovirt-engine-webadmin, as used in Red Hat Enterprise Virtualization Manager (aka RHEV-M) for Servers and RHEV-M 4.0, allows physically proximate attackers to bypass a webadmin session timeout restriction via vectors related to UI selections, which trigger repeating queries.

 References:
http://www.securityfocus.com/bid/92666
https://bugzilla.redhat.com/show_bug.cgi?id=1369285

Copyright 2017, cxsecurity.com