CVE-2012-3538

Опубликовано: 04 янв. 2013

Источник: nvd

CVSS2: 3.3

EPSS Низкий

Описание

Pulp in Red Hat CloudForms before 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log.

Ссылки

http://osvdb.org/88139
http://rhn.redhat.com/errata/RHSA-2012-1543.html
Vendor Advisory
http://secunia.com/advisories/51472
Vendor Advisory
http://www.securityfocus.com/bid/56819
https://exchange.xforce.ibmcloud.com/vulnerabilities/80547
http://osvdb.org/88139
http://rhn.redhat.com/errata/RHSA-2012-1543.html
Vendor Advisory
http://secunia.com/advisories/51472
Vendor Advisory
http://www.securityfocus.com/bid/56819
https://exchange.xforce.ibmcloud.com/vulnerabilities/80547

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:redhat:cloudforms:*:*:*:*:*:*:*:*

Версия до 1.0 (включая)

EPSS

Процентиль: 41%

0.00191

Низкий

3.3 Low

CVSS2

Дефекты

CWE-255

Связанные уязвимости

CVE-2012-3538

redhat

около 13 лет назад

Pulp in Red Hat CloudForms before 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log.

GHSA-c3vm-p8x5-j8qp

github

больше 3 лет назад

Pulp in Red Hat CloudForms before 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log.

EPSS

Процентиль: 41%

0.00191

Низкий

3.3 Low

CVSS2

Дефекты

CWE-255