2 matches found
RHEL 6 : rhevm-reports 3.3.3 (RHSA-2014:0558)
An updated rhevm-reports package that fixes three security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having Low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for eac...
CVE-2014-0199
The CVE-2014-0199 issue affects ovirt-engine-reports (as used by rhevm-reports) before version 3.3.3, where the setup script stores the reports database password in cleartext in a file readable by everyone. Local attackers with access to the Red Hat Enterprise Virtualization Manager server could ...