Ovirt - Ovirt CVE

Filtered by vendor Ovirt Subscribe

Filtered by product Ovirt

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-1072	2 Ovirt, Redhat	2 Ovirt, Enterprise Virtualization Manager	2019-10-09	5.0 MEDIUM	9.8 CRITICAL
ovirt-engine before version ovirt 4.2.2 is vulnerable to an information exposure through log files. When engine-backup was run with one of the options "--provision*db", the database username and password were logged in cleartext. Sharing the provisioning log might inadvertently leak database passwords.

Vulnerabilities (CVE)