RHSA-2022:8502
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 16 Sept 2024, 09:02
Last modified:03 Mar 2026, 10:06
Vulnerability Summary
Overall Risk (default)
medium
26/100 CVSS Score
6.5 MEDIUM
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 09:02
Published
Vulnerability first disclosed
03 Mar 2026, 10:06
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.3] bug fix and security update
CVSS Metrics
- v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected Systems
- redhat•ovirt-engine
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-backend
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-dbscripts
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-dwh
< 0:4.5.7-1.el8ev
- redhat•ovirt-engine-dwh-grafana-integration-setup
< 0:4.5.7-1.el8ev
- redhat•ovirt-engine-dwh-setup
< 0:4.5.7-1.el8ev
- redhat•ovirt-engine-health-check-bundler
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-restapi
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-base
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-cinderlib
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-imageio
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-ovirt-engine
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-ovirt-engine-common
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-vmconsole-proxy-helper
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-setup-plugin-websocket-proxy
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-tools
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-tools-backup
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-ui-extensions
< 0:1.3.6-1.el8ev
- redhat•ovirt-engine-vmconsole-proxy-helper
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-webadmin-portal
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-engine-websocket-proxy
< 0:4.5.3.2-1.el8ev
- redhat•ovirt-web-ui
< 0:1.9.2-1.el8ev
- redhat•python3-ovirt-engine-lib
< 0:4.5.3.2-1.el8ev
- redhat•rhvm
< 0:4.5.3.2-1.el8ev
References (23)
- https://access.redhat.com/errata/RHSA-2022:8502
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=1705338
- https://bugzilla.redhat.com/show_bug.cgi?id=1836318
- https://bugzilla.redhat.com/show_bug.cgi?id=1886211
- https://bugzilla.redhat.com/show_bug.cgi?id=1968433
- https://bugzilla.redhat.com/show_bug.cgi?id=1974535
- https://bugzilla.redhat.com/show_bug.cgi?id=1983567
- https://bugzilla.redhat.com/show_bug.cgi?id=2044556
- https://bugzilla.redhat.com/show_bug.cgi?id=2079545
- https://bugzilla.redhat.com/show_bug.cgi?id=2118672
- https://bugzilla.redhat.com/show_bug.cgi?id=2123141
- https://bugzilla.redhat.com/show_bug.cgi?id=2127836
- https://bugzilla.redhat.com/show_bug.cgi?id=2134549
- https://bugzilla.redhat.com/show_bug.cgi?id=2137207
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_8502.json
- https://access.redhat.com/security/cve/CVE-2022-0155
- https://www.cve.org/CVERecord?id=CVE-2022-0155
- https://nvd.nist.gov/vuln/detail/CVE-2022-0155
- https://huntr.dev/bounties/fc524e4b-ebb6-427d-ab67-a64181020406/
- https://access.redhat.com/security/cve/CVE-2022-2805
- https://www.cve.org/CVERecord?id=CVE-2022-2805
- https://nvd.nist.gov/vuln/detail/CVE-2022-2805