PT-2017-6843 · Red Hat · Red Hat Enterprise Virtualization Manager
Kurt Seifried
·
Publicado
2017-08-24
·
Atualizado
2017-09-07
·
CVE-2015-5293
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Red Hat Enterprise Virtualization Manager versions 3.6 and earlier
Description
The issue allows remote attackers to communicate with a system designated to be unreachable by giving valid SLAAC IPv6 addresses to interfaces when the "boot protocol" is set to None.
Recommendations
For Red Hat Enterprise Virtualization Manager versions 3.6 and earlier, update the configuration to prevent assignment of valid SLAAC IPv6 addresses when the "boot protocol" is set to None.
Correção
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Red Hat Enterprise Virtualization Manager