CVE-2014-3573 is a vulnerability in Red Hat Enterprise Virtualization Manager
Published on October 18, 2014

The oVirt Engine backend module, as used in Red Hat Enterprise Virtualization Manager before 3.4.2, uses an "insecure DocumentBuilderFactory," which allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted XML/RSDL document, related to an XML External Entity (XXE) issue.

Vendor Advisory NVD

Products Associated with CVE-2014-3573

Want to know whenever a new CVE is published for Red Hat Enterprise Virtualization Manager? stack.watch will email you.

Red Hat Enterprise Virtualization Manager

Exploit Probability

EPSS

0.46%

Percentile

63.51%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-3573 is a vulnerability in Red Hat Enterprise Virtualization ManagerPublished on October 18, 2014

Products Associated with CVE-2014-3573

Exploit Probability

CVE-2014-3573 is a vulnerability in Red Hat Enterprise Virtualization Manager
Published on October 18, 2014