3 matches found
RHEL 6 : rhevm-reports 3.3.3 (RHSA-2014:0558)
An updated rhevm-reports package that fixes three security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having Low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for eac...
CVE-2014-0201
CVE-2014-0201 concerns the ovirt-engine-reports component in the Red Hat Enterprise Virtualization reports package (rhevm-reports) prior to version 3.3.3. The root cause is that multiple configuration files are world-readable, enabling a local attacker with access to read sensitive information. P...
CVE-2014-0201
ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package rhevm-reports before 3.3.3, uses world-readable permissions on configuration files, which allows local users to obtain sensitive information by reading the files...