Information Disclosure

ovirt is vulnerable to information disclosure. An attacker with sufficient privileges is able to read the log file due to plaintext password logging in the log file when using otapi-style...

CVE-2022-2805

A flaw was found in ovirt-engine, which leads to the logging of plaintext passwords in the log file when using otapi-style. This flaw allows an attacker with sufficient privileges to read the log file, leading to confidentiality loss...

ovirt-engine 信息泄露漏洞

ovirt-engine is an open source virtualization management engine. An information disclosure vulnerability exists in ovirt-engine that stems from recording plaintext passwords in log files when using otapi style. An attacker could exploit this vulnerability to read the log file, which could result ...

CVE-2022-2805

The CVE-2022-2805 entry concerns the ovirt-engine component where plaintext passwords are logged when using otapi-style, enabling a sufficiently privileged attacker to read log files and obtain confidential data. Affected product: ovirt-engine (Red Hat Virtualization Manager). Root cause: logging...

CVE-2022-2805

A flaw was found in ovirt-engine, which leads to the logging of plaintext passwords in the log file when using otapi-style. This flaw allows an attacker with sufficient privileges to read the log file, leading to confidentiality loss...