Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-9593

Опубликовано: 20 дек. 2016
Источник: redhat
CVSS3: 4.7
CVSS2: 1.5
EPSS Низкий

Описание

foreman-debug before version 1.15.0 is vulnerable to a flaw in foreman-debug's logging. An attacker with access to the foreman log file would be able to view passwords, allowing them to access those systems.

A flaw was found in foreman-debug's logging. An attacker with access to the foreman log file would be able to view passwords, allowing them to access those systems.

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-522
https://bugzilla.redhat.com/show_bug.cgi?id=1406384foreman-debug: missing obfuscation of sensitive information

EPSS

Процентиль: 44%
0.00218
Низкий

4.7 Medium

CVSS3

1.5 Low

CVSS2

Связанные уязвимости

nvd логотип

CVE-2016-9593

CVSS3: 4.7
nvd
почти 8 лет назад

foreman-debug before version 1.15.0 is vulnerable to a flaw in foreman-debug's logging. An attacker with access to the foreman log file would be able to view passwords, allowing them to access those systems.

debian логотип

CVE-2016-9593

CVSS3: 4.7
debian
почти 8 лет назад

foreman-debug before version 1.15.0 is vulnerable to a flaw in foreman ...

github логотип

GHSA-c5rm-gfhx-cpwq

CVSS3: 8.8
github
больше 3 лет назад

foreman-debug before version 1.15.0 is vulnerable to a flaw in foreman-debug's logging. An attacker with access to the foreman log file would be able to view passwords, allowing them to access those systems.

EPSS

Процентиль: 44%
0.00218
Низкий

4.7 Medium

CVSS3

1.5 Low

CVSS2