CVE-2012-5518
First published: Mon Nov 25 2019(Updated: )
vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key (and certificate)
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ovirt Vdsm |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2012-5518?
CVE-2012-5518 is a vulnerability in vdsm that allows certificate generation upon node creation, allowing vdsm to start and serve requests from anyone who has a matching key and certificate.
What is the severity of CVE-2012-5518?
The severity of CVE-2012-5518 is high, with a severity value of 7.5.
How does CVE-2012-5518 affect Ovirt Vdsm?
CVE-2012-5518 affects Ovirt Vdsm by allowing certificate generation upon node creation, enabling vdsm to start and serve requests from anyone who has a matching key and certificate.
How do I fix CVE-2012-5518?
To fix CVE-2012-5518, update vdsm to a version that patches the vulnerability.
Where can I find more information about CVE-2012-5518?
You can find more information about CVE-2012-5518 at the following references: [http://www.openwall.com/lists/oss-security/2012/11/11/3](http://www.openwall.com/lists/oss-security/2012/11/11/3), [https://access.redhat.com/security/cve/cve-2012-5518](https://access.redhat.com/security/cve/cve-2012-5518), [https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5518](https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5518).
- collector/nvd-index
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ovirt
- canonical/ovirt vdsm