CVE-2014-0200
published 2014-05-29CVE-2014-0200: The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration…
low2.1CVSS 3.1
AVLACLAuNCPINAN
The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows local users to obtain sensitive information by reading the file.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| redhat | rhevm-reports | <= 3.3.3 | — |
| redhat | rhevm-reports | — | — |
| redhat | rhevm-reports | — | — |
| redhat | rhevm-reports | — | — |
| redhat | rhevm-reports | — | — |