Lucene search
HistoryMay 02, 2014 - 2:55 p.m.
CVE-2014-0189
cve-2014-0189
virt-who
world-readable
permissions
hypervisor
nvd
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file.
Affected configurations
Node
redhatenterprise_linux_desktopMatch7.0
ORredhatenterprise_linux_serverMatch7.0
ORredhatenterprise_linux_workstationMatch7.0
Node
virt-who_projectvirt-whoMatch-
Related
nessus
nessus
Fedora 21 : virt-who-0.8-11.fc21 (2015-1632)
2015-02-16 00:00:00
Scientific Linux Security Update : virt-who on SL7.x (noarch) (20150305)
2015-03-26 00:00:00
CentOS 7 : virt-who (CESA-2015:0430)
2015-03-18 00:00:00
openvas
openvas
Fedora Update for virt-who FEDORA-2015-1632
2015-02-15 00:00:00
RedHat Update for virt-who RHSA-2015:0430-01
2015-03-06 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: virt-who-0.8-11.fc21
2015-02-15 03:24:03
centos
centos
virt security update
2015-03-17 13:30:09
veracode
veracode
Information Disclosure
2019-01-15 08:54:22
prion
prion
Default credentials
2014-05-02 14:55:00
nvd
nvd
CVE-2014-0189
2014-05-02 14:55:05
cvelist
cvelist
CVE-2014-0189
2014-05-02 14:00:00
redhat
redhat
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-0189