Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:10934
HistoryJan 15, 2019 - 8:54 a.m.

Information Disclosure

2019-01-1508:54:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4

0.0004 Low

EPSS

Percentile

5.1%

JSON

virt-who is vulnerable to information disclosure. Excessive permissions on the /etc/sysconfig/virt-who file allows any local users to read the contents and retrieve confidential information such as the password for hypervisors.

References

Related

cve 1
openvas 2
fedora 1
centos 1
prion 1
nvd 1
nessus 4
cvelist 1
redhat 1
cve
cve
CVE-2014-0189
2014-05-02 14:55:05
openvas
openvas
Fedora Update for virt-who FEDORA-2015-1632
2015-02-15 00:00:00
RedHat Update for virt-who RHSA-2015:0430-01
2015-03-06 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: virt-who-0.8-11.fc21
2015-02-15 03:24:03
centos
centos
virt security update
2015-03-17 13:30:09
prion
prion
Default credentials
2014-05-02 14:55:00
nvd
nvd
CVE-2014-0189
2014-05-02 14:55:05
nessus
nessus
Scientific Linux Security Update : virt-who on SL7.x (noarch) (20150305)
2015-03-26 00:00:00
CentOS 7 : virt-who (CESA-2015:0430)
2015-03-18 00:00:00
RHEL 7 : virt-who (RHSA-2015:0430)
2015-03-05 00:00:00
cvelist
cvelist
CVE-2014-0189
2014-05-02 14:00:00
redhat
redhat
(RHSA-2015:0430) Moderate: virt-who security, bug fix, and enhancement update
2015-03-05 05:43:58

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for VERACODE:10934
cve1openvas2fedora1centos1prion1nvd1nessus4cvelist1redhat1