2 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-6341
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - oVirt Engine before 4.0.3 does not include DWHDBPASSWORD in the list of keys to hide in log files, which allows local users to obtain sensitive password...
CVE-2016-6341
The CVE affects oVirt Engine prior to 4.0.3. The root cause is that DWH_DB_PASSWORD is not hidden in engine log files, enabling local users to read logs and obtain sensitive password information. Impact is information disclosure affecting confidentiality. The documented remediation is to upgrade ...