exploitDog

CVE-2014-0200

Опубликовано: 27 мая 2014

Источник: redhat

CVSS2: 2.1

EPSS Низкий

Описание

The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows local users to obtain sensitive information by reading the file.

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-732

https://bugzilla.redhat.com/show_bug.cgi?id=1094229ovirt-engine-reports: js-jboss7-ds.xml is world-readable

EPSS

Процентиль: 13%

0.00042

Низкий

2.1 Low

CVSS2

Связанные уязвимости

CVE-2014-0200

nvd

больше 11 лет назад

The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows local users to obtain sensitive information by reading the file.

GHSA-9q7g-42xw-69h2

github

больше 3 лет назад

The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows local users to obtain sensitive information by reading the file.

EPSS

Процентиль: 13%

0.00042

Низкий

2.1 Low

CVSS2