EUVD-2014-0253

Malware in sbrugna...

CVE-2014-0202

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

Design/Logic Flaw

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

CVE-2014-0202

The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse rhevm-dwh package before 3.3.3, stores the history database password in cleartext, which allows local users to obtain sensitive information by reading an unspecified file...

CVE-2014-0202

CVE-2014-0202 affects ovirt-engine-dwh in rhevm-dwh prior to 3.3.3. The setup script stores the history database password in cleartext to a world-readable file, allowing local users to read sensitive information. Red Hat RHSA-2014:0559 advises updating to rhevm-dwh 3.3.3 (or later) to fix the iss...

PT-2014-3532 · Ovirt · Ovirt-Engine-Dwh

Name of the Vulnerable Software and Affected Versions: ovirt-engine-dwh versions prior to 3.3.3 Description: The issue allows local users to obtain sensitive information by reading an unspecified file, as the setup script stores the history database password in cleartext. Recommendations: For...