Описание
Eucalyptus 3.0.0 through 4.0.1, when the log level is set to DEBUG or lower, logs user and system passwords, which allows local users to obtain sensitive information by reading the cloud log files.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:eucalyptus:eucalyptus:3.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:eucalyptus:eucalyptus:4.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00056
Низкий
2.1 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
ubuntu
около 11 лет назад
Eucalyptus 3.0.0 through 4.0.1, when the log level is set to DEBUG or lower, logs user and system passwords, which allows local users to obtain sensitive information by reading the cloud log files.
debian
около 11 лет назад
Eucalyptus 3.0.0 through 4.0.1, when the log level is set to DEBUG or ...
github
больше 3 лет назад
Eucalyptus 3.0.0 through 4.0.1, when the log level is set to DEBUG or lower, logs user and system passwords, which allows local users to obtain sensitive information by reading the cloud log files.
EPSS
Процентиль: 18%
0.00056
Низкий
2.1 Low
CVSS2
Дефекты
CWE-200