CVE-2014-3559 is a vulnerability in Red Hat Enterprise Virtualization
Published on August 6, 2014

The oVirt storage backend in Red Hat Enterprise Virtualization 3.4 does not wipe memory snapshots when deleting a VM, even when wipe-after-delete (WAD) is configured for the VM's disk, which allows remote authenticated users with certain credentials to read portions of the deleted VM's memory and obtain sensitive information via an uninitialized storage volume.

Vendor Advisory NVD

Products Associated with CVE-2014-3559

Want to know whenever a new CVE is published for Red Hat Enterprise Virtualization? stack.watch will email you.

Red Hat Enterprise Virtualization

Exploit Probability

EPSS

0.27%

Percentile

50.45%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-3559 is a vulnerability in Red Hat Enterprise VirtualizationPublished on August 6, 2014

Products Associated with CVE-2014-3559

Exploit Probability

CVE-2014-3559 is a vulnerability in Red Hat Enterprise Virtualization
Published on August 6, 2014