Vulnerability Details CVE-2015-5293
Red Hat Enterprise Virtualization Manager 3.6 and earlier gives valid SLAAC IPv6 addresses to interfaces when "boot protocol" is set to None, which might allow remote attackers to communicate with a system designated to be unreachable.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 76.8%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
References
Products affected by CVE-2015-5293
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2.3
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.0
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.2
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.4
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.4.1
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.5.0
-
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.6.0