Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Virtualization
(Oracle)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 23 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-05-26 | CVE-2021-20191 | A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log feature when using those modules. An attacker can take advantage of this information to steal those credentials. The highest threat from this vulnerability is to data confidentiality. Versions before ansible 2.9.18 are affected. | Virtualization, Ansible, Ansible_tower, Cisco_nx\-Os_collection, Community_general_collection, Community_network_collection, Docker_community_collection, Google_cloud_platform_ansible_collection | 5.5 | ||
| 2015-06-07 | CVE-2014-0230 | Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts. | Tomcat, Virtualization | N/A | ||
| 2020-08-24 | CVE-2020-10775 | An Open redirect vulnerability was found in ovirt-engine versions 4.4 and earlier, where it allows remote attackers to redirect users to arbitrary web sites and attempt phishing attacks. Once the target has opened the malicious URL in their browser, the critical part of the URL is no longer visible. The highest threat from this vulnerability is on confidentiality. | Virtualization, Ovirt\-Engine | 5.3 |