Required CVE Record Information
Description
ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users to obtain sensitive information by reading the files.
References 1 Total
- rhn.redhat.com: RHSA-2014:0558 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 1 Total
- rhn.redhat.com: RHSA-2014:0558 vendor-advisoryx_transferred