The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive information by listing the processes.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2014-12-05T16:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2014-05-14T00:00:00
Link: CVE-2014-3561
JSON object: View
NVD Information
Status : Modified
Published: 2014-12-05T16:59:02.970
Modified: 2023-02-13T00:40:36.577
Link: CVE-2014-3561
JSON object: View
Redhat Information
No data.
CWE