CVE-2018-1075 — Log File Information Exposure in Ovirt

CWE-532 — Log File Information Exposure CWE-522 — Insufficiently Protected Credentials CWE-538 — Insertion of Sensitive Information into Externally-Accessible File or Directory6 documents6 sources

Severity

7.8HIGHNVD

CNA5.0

EPSS

0.0%

top 87.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ovirt

Timeline

PublishedJun 12

Latest updateMay 13

Description

ovirt-engine up to version 4.2.3 is vulnerable to an unfiltered password when choosing manual db provisioning. When engine-setup was run and one chooses to provision the database manually or connect to a remote database, the password input was logged in cleartext during the verification step. Sharing the provisioning log might inadvertently leak database passwords.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶NVDovirt/ovirt< 4.2.3

🔴Vulnerability Details

GHSA

GHSA-2874-9wc2-224f: ovirt-engine up to version 4↗2022-05-13

▶

CVEList

CVE-2018-1075: ovirt-engine up to version 4↗2018-06-12

▶

📋Vendor Advisories

Red Hat

ovirt-engine: Unfiltered password when choosing manual db provisioning↗2018-05-29

▶

💬Community

Bugzilla

CVE-2018-1075 ovirt-engine: Unfiltered password when choosing manual db provisioning↗2018-02-06

▶