CVE-2020-35497

Summary

A flaw was found in ovirt-engine 4.4.3 and earlier allowing an authenticated user to read other users' personal information, including name, email and public SSH key.

Affected Software

VendorProductVersion RangeStatus
n/aovirt-engineovirt-engine 4.4.3 and earlieraffected

Weaknesses

  • CWE-284: CWE-284->CWE-200

ADP Enrichment

CVE Program Container

Additional References

References