Vdsm

This hub aggregates every CVE we track for Vdsm, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 5 most recently published vulnerabilities affecting Vdsm.

• CVE-2022-0207A race condition was found in vdsm. Functionality to obfuscate sensitive values in log files that may lead to values being stored in clear text.4.7Aug 26, 2022
• CVE-2012-5518vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key (and certificate)7.5Nov 25, 2019
• CVE-2013-4280Insecure temporary file vulnerability in RedHat vsdm 4.9.6.5.5Nov 4, 2019
• CVE-2019-3831A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. The systemd_run function exposed to the vdsm system user could be abused to execute arbitrary commands...6.7Mar 25, 2019
• CVE-2018-10908It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process t...6.5Aug 9, 2018