Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-0199

Опубликовано: 29 мая 2014
Источник: nvd
CVSS2: 2.1
EPSS Низкий

Описание

The setup script in ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3, stores the reports database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:rhevm-reports:*:*:*:*:*:*:*:*
Версия до 3.3 (включая)
cpe:2.3:a:redhat:rhevm-reports:3.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:rhevm-reports:3.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:rhevm-reports:3.2:*:*:*:*:*:*:*

EPSS

Процентиль: 18%
0.00056
Низкий

2.1 Low

CVSS2

Дефекты

CWE-310

Связанные уязвимости

redhat логотип

CVE-2014-0199

redhat
больше 11 лет назад

The setup script in ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3, stores the reports database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

github логотип

GHSA-cr4w-q8q3-vcf6

github
больше 3 лет назад

The setup script in ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3, stores the reports database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

EPSS

Процентиль: 18%
0.00056
Низкий

2.1 Low

CVSS2

Дефекты

CWE-310