Security Advisory

CVE-2014-0153

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-08 14:00:00

Last updated 2024-08-06 09:05:38

Assigner redhat

State PUBLISHED

Description

The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page.

← Browse all CVEs View on cve.org ↗