exploitDog

GHSA-4mqp-w6v5-gr6x

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

In ovirt-engine 4.1, if a host was provisioned with cloud-init, the root password could be revealed through the REST interface.

In ovirt-engine 4.1, if a host was provisioned with cloud-init, the root password could be revealed through the REST interface.

Ссылки

EPSS

Процентиль: 48%

0.00253

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-522

Связанные уязвимости

CVE-2017-7510

CVSS3: 6.5

redhat

больше 8 лет назад

In ovirt-engine 4.1, if a host was provisioned with cloud-init, the root password could be revealed through the REST interface.

CVE-2017-7510

CVSS3: 8.8

nvd

почти 7 лет назад

In ovirt-engine 4.1, if a host was provisioned with cloud-init, the root password could be revealed through the REST interface.

EPSS

Процентиль: 48%

0.00253

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-522