CVE-2010-2811

Advisory lineage Upstream: 0 Downstream: 2

Downstream

RHSA-2010:0622 RHSA-2010:0628

Modified

Published: 24 Aug 2010, 17:00

Last modified:07 Aug 2024, 02:46

Vulnerability Summary

Overall Risk (default)

low

23/100

CVSS Score

5.7 MEDIUM

v2.0 (nvd)

EPSS Score

0.54% LOW

1% probability +0.21%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

24 Aug 2010, 17:00

Published

Vulnerability first disclosed

07 Aug 2024, 02:46

Last Modified

Vulnerability information updated

Description

Virtual Desktop Server Manager (VDSM) in Red Hat Enterprise Virtualization (RHEV) 2.2 does not properly accept TCP connections for SSL sessions, which allows remote attackers to cause a denial of service (daemon outage) via crafted SSL traffic.

CVSS Metrics

v2.0•MEDIUM•Score: 5.7AV:A/AC:M/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 0.54%• Percentile: 68%

Affected Systems

redhat•enterprise_virtualization
2.2

References (5)

http://www.securityfocus.com/bid/42580
https://rhn.redhat.com/errata/RHSA-2010-0622.html
https://rhn.redhat.com/errata/RHSA-2010-0628.html
https://bugzilla.redhat.com/show_bug.cgi?id=622928
http://securitytracker.com/id?1024347