Vulnerability Details CVE-2015-5293
Red Hat Enterprise Virtualization Manager 3.6 and earlier gives valid SLAAC IPv6 addresses to interfaces when "boot protocol" is set to None, which might allow remote attackers to communicate with a system designated to be unreachable.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.0%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
References
Products affected by CVE-2015-5293
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2.3
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.0
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.2
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.4
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.4.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.5.0
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.6.0