exploitDog

CVE-2014-0201

Опубликовано: 27 мая 2014

Источник: redhat

CVSS2: 2.1

EPSS Низкий

Описание

ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users to obtain sensitive information by reading the files.

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-732->CWE-200

https://bugzilla.redhat.com/show_bug.cgi?id=1094231ovirt-engine-reports: various configuration files are world-readable

EPSS

Процентиль: 13%

0.00042

Низкий

2.1 Low

CVSS2

Связанные уязвимости

CVE-2014-0201

nvd

больше 11 лет назад

ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users to obtain sensitive information by reading the files.

GHSA-364g-h6q4-24hp

github

больше 3 лет назад

ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users to obtain sensitive information by reading the files.

EPSS

Процентиль: 13%

0.00042

Низкий

2.1 Low

CVSS2