Red Hat · Red Hat Jboss Operations Network · CVE-2013-4293
**Name of the Vulnerable Software and Affected Versions**
Red Hat JBoss Operations Network (JON) version 3.1.2
**Description**
The issue allows local users to obtain sensitive information by reading the log files, as the server logs passwords in plaintext.
**Recommendations**
For Red Hat JBoss Operations Network (JON) version 3.1.2, consider restricting access to the log files to minimize the risk of exploitation. As a temporary workaround, review and modify the logging configuration to avoid storing sensitive information, such as passwords, in plaintext.