CVE-2014-5037

Опубликовано: 07 нояб. 2014

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

Eucalyptus 4.0.0 through 4.0.1, when the log level is set to INFO, logs user and system passwords, which allows local users to obtain sensitive information by reading cloud-requests.log.

Ссылки

http://secunia.com/advisories/62055
https://www.eucalyptus.com/resources/security/advisories/esa-25
Patch
Vendor Advisory
http://secunia.com/advisories/62055
https://www.eucalyptus.com/resources/security/advisories/esa-25
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:eucalyptus:eucalyptus:4.0.0:*:*:*:*:*:*:*

cpe:2.3:a:eucalyptus:eucalyptus:4.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00056

Низкий

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-5037

ubuntu

около 11 лет назад

Eucalyptus 4.0.0 through 4.0.1, when the log level is set to INFO, logs user and system passwords, which allows local users to obtain sensitive information by reading cloud-requests.log.

CVE-2014-5037

debian

около 11 лет назад

Eucalyptus 4.0.0 through 4.0.1, when the log level is set to INFO, log ...

GHSA-58v5-rfm5-fj8r

github

больше 3 лет назад

Eucalyptus 4.0.0 through 4.0.1, when the log level is set to INFO, logs user and system passwords, which allows local users to obtain sensitive information by reading cloud-requests.log.

EPSS

Процентиль: 18%

0.00056

Низкий

2.1 Low

CVSS2

Дефекты

CWE-200