Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-6115

Опубликовано: 12 мар. 2013
Источник: nvd
CVSS2: 2.1
EPSS Низкий

Описание

The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a world-readable log file, which allows local users to obtain sensitive information by reading this file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:enterprise_virtualization_manager:*:*:*:*:*:*:*:*
Версия до 3.1 (включая)
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:enterprise_virtualization_manager:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:redhat:enterprise_virtualization_manager:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 20%
0.00064
Низкий

2.1 Low

CVSS2

Дефекты

CWE-255

Связанные уязвимости

redhat логотип

CVE-2012-6115

redhat
около 13 лет назад

The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a world-readable log file, which allows local users to obtain sensitive information by reading this file.

debian логотип

CVE-2012-6115

debian
почти 13 лет назад

The domain management tool (rhevm-manage-domains) in Red Hat Enterpris ...

github логотип

GHSA-v9rq-qgv5-9mqc

github
больше 3 лет назад

The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a world-readable log file, which allows local users to obtain sensitive information by reading this file.

EPSS

Процентиль: 20%
0.00064
Низкий

2.1 Low

CVSS2

Дефекты

CWE-255