Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2015-5201

UNKNOWN
Published 2020-02-25T20:16:02
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2015-5201. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H) 7-7.x before 7-7.2-20151119.0 and 6-6.x before 6-6.7-20151117.0 as packaged in Red Hat Enterprise Virtualization before 3.5.6 when VSDM is run with -spice disable-ticketing and a VM is suspended and then restored, allows remote attackers to log in without authentication via unspecified vectors.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

RedHat

Enterprise Virtualization Hypervisor (aka RHEV-H)

Affected Versions:

7-7.x before 7-7.2-20151119.0 and 6-6.x before 6-6.7-20151117.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-2896-6gvq-8vjr

Advisory Details

VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H) 7-7.x before 7-7.2-20151119.0 and 6-6.x before 6-6.7-20151117.0 as packaged in Red Hat Enterprise Virtualization before 3.5.6 when VSDM is run with -spice disable-ticketing and a VM is suspended and then restored, allows remote attackers to log in without authentication via unspecified vectors.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2015-5201
WEB https://access.redhat.com/errata/RHEA-2015:2527
WEB https://access.redhat.com/security/cve/cve-2015-5201
WEB https://bugzilla.redhat.com/show_bug.cgi?id=1253882
WEB https://bugzilla.redhat.com/show_bug.cgi?id=1273144
WEB https://rhn.redhat.com/errata/RHEA-2015-2527.html

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: February 2, 2023

References

https://bugzilla.redhat.com/show_bug.cgi?id=1253882
https://rhn.redhat.com/errata/RHEA-2015-2527.html
https://bugzilla.redhat.com/show_bug.cgi?id=1273144
https://access.redhat.com/security/cve/cve-2015-5201
Published: 2020-02-25T20:16:02
Last Modified: 2024-08-06T06:41:08.567Z
Copied to clipboard!