A vulnerability was found in Red Hat oVirt. It has been rated as critical. Affected by this issue is the function CreateUserSessionCommand of the file /ovirt-engine/webadmin/GenericApiGWTService. The manipulation leads to improper authentication.

This vulnerability is handled as CVE-2024-0822. The attack needs to be initiated within the local network. There is no exploit available.