PT-2019-11614 · Ovirt · Ovirt Metrics
Avital Pinnick
+1
·
Publicado
2019-07-11
·
Atualizado
2023-03-01
·
CVE-2019-10194
CVSS v3.1
5.9
Média
| Vetor | AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
oVirt Metrics (affected versions not specified)
Description:
The issue concerns sensitive passwords used in the deployment and configuration of oVirt Metrics. These passwords are insufficiently protected and could be disclosed in log files if playbooks are run with the -v option or in playbooks stored on Metrics or Bastion hosts.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Insertion into Log File
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ovirt Metrics