Red Hat · Red Hat Enterprise Virtualization Manager · CVE-2016-4443
**Name of the Vulnerable Software and Affected Versions**
Red Hat Enterprise Virtualization (RHEV) Manager version 3.6
**Description**
The issue allows local users to access sensitive information, including encryption keys and certificates, by reading the engine-setup log file.
**Recommendations**
For Red Hat Enterprise Virtualization (RHEV) Manager version 3.6, restrict access to the engine-setup log file to prevent unauthorized users from obtaining sensitive information.