exploitDog

CVE-2014-0202

Опубликовано: 30 мая 2014

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse (rhevm-dwh) package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

Ссылки

http://rhn.redhat.com/errata/RHSA-2014-0559.html
Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2014-0559.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:redhat:rhevm-dwh:*:*:*:*:*:*:*:*

Версия до 3.3.2 (включая)

EPSS

Процентиль: 18%

0.00056

Низкий

2.1 Low

CVSS2

Дефекты

CWE-255

Связанные уязвимости

CVE-2014-0202

redhat

больше 11 лет назад

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse (rhevm-dwh) package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

GHSA-xp29-pwxq-2c4v

github

больше 3 лет назад

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse (rhevm-dwh) package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file.

EPSS

Процентиль: 18%

0.00056

Низкий

2.1 Low

CVSS2

Дефекты

CWE-255