Описание
The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the display.
Ссылки
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:redhat:quickstart_cloud_installer:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.0008
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 4.9
redhat
около 9 лет назад
The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the display.
CVSS3: 4.6
github
больше 3 лет назад
The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the display.
EPSS
Процентиль: 24%
0.0008
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200