Lucene search
PRIOn knowledge basePRION:CVE-2014-3561HistoryDec 05, 2014 - 4:59 p.m.
Default credentials
2014-12-0516:59:00
PRIOn knowledge base
www.prio-n.com
1
6.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.4%
The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive information by listing the processes.
| CPE | Name | Operator | Version |
|---|---|---|---|
| enterprise_virtualization | eq | 3.4 |
Related
nessus
nessus
RHEL 6 : rhevm-log-collector (RHSA-2014:1947)
2014-12-05 00:00:00
redhat
redhat
(RHSA-2014:1947) Low: rhevm-log-collector security update
2014-12-02 00:00:00
cve
cve
CVE-2014-3561
2014-12-05 16:59:00
veracode
veracode
Information Disclosure
2019-01-15 09:03:26
6.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.4%
Related for PRION:CVE-2014-3561