← Back

CVE-2011-4316

nvd nist
Published: Jan 4, 2013Modified: Apr 29, 2026

JSON object

Loading...
3.7
Vector
AV:L/AC:H/Au:N/C:P/I:P/A:P
Exploitability: 1.9 / Impact: 6.4
Source: NVD

Description

Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, in certain unspecified conditions, does not lock the desktop screen between SPICE sessions, which allows local users with access to a virtual machine to gain access to other users' desktop sessions via unspecified vectors.

Affected (4)

Redhat
1 product
Enterprise Virtualization Manager
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Enterprise Virtualization Manager
Up to 3.0
Enterprise Virtualization Manager
Version 2.1
Enterprise Virtualization Manager
Version 2.2.3
Enterprise Virtualization Manager
Version 2.2

Related CWEs

CWE-264
CWE-264

References (10)

Source: secalert@redhat.com
Vendor Advisory
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.