EUVD-2014-0253

Malware in sbrugna...

Malicious code in data-portal-dwh-apps-fe (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab7cba9f94172f82eeb5393dcc4b3550acc666567a7b87fe87fc5aca5c917b6b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4331 Malicious code in data-portal-dwh-apps-fe (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab7cba9f94172f82eeb5393dcc4b3550acc666567a7b87fe87fc5aca5c917b6b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

RHSA-2014:0559 Red Hat Security Advisory: rhevm-dwh 3.3.3 security and bug fix update

Bulletin has no description...

dbt has an implicit override for built-in materializations from installed packages

Impact What kind of vulnerability is it? Who is impacted? When a user installs a package in dbt, it has the ability to override macros, materializations, and other core components of dbt. This is by design, as it allows packages to extend and customize dbt's functionality. However, this also mean...

abi-ds-utils (=1.0.1), airflow-add-ons (=0.2.9b1) +14 more potentially affected by CVE-2023-51702 via apache-airflow (>=2.3.2 <=2.5.3)

apache-airflow PYPI version =2.3.2, =0.8.2, =0.1.0, =0.1.20, =2.3.0.dev0, =0.0.37, =0.1.0, =0.1.2, =2.4.3, =0.1.0, =0.10.0.1 and more Source cves: CVE-2023-51702 Source advisory: OSV:GHSA-MG2X-MGGJ-6955...

airflow-clickhouse-plugin (>=0.10.0 <=0.10.1), airflow-provider-ibm-db2 (=0.1.2) +4 more potentially affected by CVE-2023-35005 via apache-airflow (>=2.5.0 <=2.5.3)

apache-airflow PYPI version =2.5.0, =0.10.0, =2.3.0.dev0, =0.0.37, =0.1.2, =0.2.0, =0.2.1 Source cves: CVE-2023-35005 Source advisory: OSV:GHSA-MJFF-WV85-HMCJ...

RHEL 6 : rhevm-dwh 3.3.3 (RHSA-2014:0559)

An updated rhevm-dwh package that fixes one security issue and two bugs is now available. The Red Hat Security Response Team has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available from the CV...

CVE-2014-0202

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

Design/Logic Flaw

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

CVE-2014-0202

CVE-2014-0202 affects ovirt-engine-dwh in rhevm-dwh prior to 3.3.3. The setup script stores the history database password in cleartext to a world-readable file, allowing local users to read sensitive information. Red Hat RHSA-2014:0559 advises updating to rhevm-dwh 3.3.3 (or later) to fix the iss...

CVE-2014-0202

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

PT-2014-3532 · Ovirt · Ovirt-Engine-Dwh

Name of the Vulnerable Software and Affected Versions: ovirt-engine-dwh versions prior to 3.3.3 Description: The issue allows local users to obtain sensitive information by reading an unspecified file, as the setup script stores the history database password in cleartext. Recommendations: For...