CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-5201

VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H) 7-7.x before 7-7.2-20151119.0 and 6-6.x before 6-6.7-20151117.0 as packaged in Red Hat Enterprise Virtualization before 3.5.6 when VSDM is run with -spice disable-ticketing and a VM is suspended and then restored, allows remote attackers to log in without authentication via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.1%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2015-5201

Redhat » Enterprise Virtualization » Version: 2.2

cpe:2.3:a:redhat:enterprise_virtualization:2.2
Redhat » Enterprise Virtualization » Version: 3.0

cpe:2.3:a:redhat:enterprise_virtualization:3.0
Redhat » Enterprise Virtualization » Version: 3.2

cpe:2.3:a:redhat:enterprise_virtualization:3.2
Redhat » Enterprise Virtualization » Version: 3.4

cpe:2.3:a:redhat:enterprise_virtualization:3.4
Redhat » Enterprise Virtualization Hypervisor » Version: Any

cpe:2.3:a:redhat:enterprise_virtualization_hypervisor:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-5201

Products

Pricing

Contact Us