exploitDog

CVE-2012-5658

Опубликовано: 24 фев. 2013

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channels.

Ссылки

http://rhn.redhat.com/errata/RHSA-2013-0220.html
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=889062
http://rhn.redhat.com/errata/RHSA-2013-0220.html
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=889062

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:openshift:*:-:enterprise:*:*:*:*:*

Версия до 1.0 (включая)

cpe:2.3:a:redhat:openshift_origin:1.0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00063

Низкий

2.1 Low

CVSS2

Дефекты

CWE-310

Связанные уязвимости

CVE-2012-5658

redhat

около 13 лет назад

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channels.

GHSA-4prw-24cm-ghmj

github

больше 3 лет назад

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channels.

EPSS

Процентиль: 20%

0.00063

Низкий

2.1 Low

CVSS2

Дефекты

CWE-310