CVE-2022-2084

Опубликовано: 19 апр. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*

Версия до 22.3 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*

EPSS

Процентиль: 5%

0.00026

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-532

Связанные уязвимости

CVE-2022-2084

CVSS3: 5.5

ubuntu

около 2 лет назад

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

CVE-2022-2084

CVSS3: 5.5

redhat

около 2 лет назад

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

CVE-2022-2084

CVSS3: 5.5

msrc

около 2 лет назад

Описание отсутствует

CVE-2022-2084

CVSS3: 5.5

debian

около 2 лет назад

Sensitive data could be exposed in world readable logs of cloud-init b ...

GHSA-w62x-qh57-5m94

CVSS3: 5.5

github

около 2 лет назад

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

EPSS

Процентиль: 5%

0.00026

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-532