Dan Kenigsberg

**Name of the Vulnerable Software and Affected Versions** vdsm (affected versions not specified) **Description** The issue allows vdsm to start and serve requests from anyone who has a matching key (and certificate) due to a problem with certificate generation upon node creation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Red Hat Enterprise Virtualization versions 3 and 3.2 **Description** The issue allows privileged guest users to cause the host to become unavailable to the management server by utilizing guestInfo dictionaries with unexpected fields. **Recommendations** For Red Hat Enterprise Virtualization versions 3 and 3.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.