CVE-2022-29550

Name of the Vulnerable Software and Affected Versions Qualys Cloud Agent version 4.8.0-49

Description An issue was discovered in Qualys Cloud Agent where it writes "ps auxwwe" output to the /var/log/qualys/qualys-cloud-agent-scan.log file. This may unexpectedly write credentials from environment variables to disk in cleartext. Although there are no common circumstances in which the log file can be read by a user other than root, the file contents could be exposed through site-specific operational practices. The vendor does not characterize this as a vulnerability because the ps data collection is intentional and would only capture credentials on a machine already affected by a specific weakness.

Recommendations For Qualys Cloud Agent version 4.8.0-49, consider restricting access to the /var/log/qualys/qualys-cloud-agent-scan.log file to minimize the risk of exposure. As a temporary workaround, consider disabling the collection of "ps auxwwe" output until a more secure solution is available. At the moment, there is no information about a newer version that contains a fix for this issue.