Red Hat · Red Hat Enterprise Virtualization Manager · CVE-2013-0168
**Name of the Vulnerable Software and Affected Versions**
Red Hat Enterprise Virtualization Manager (RHEV-M) versions 3.1 and earlier
**Description**
The issue is related to the MoveDisk command, which does not properly check permissions on storage domains. This allows remote authenticated storage admins to cause a denial of service by consuming free space of other storage domains.
**Recommendations**
For versions 3.1 and earlier, consider restricting access to the MoveDisk command to prevent unauthorized use until a fix is available.