- EPSS 0.4%
- Published 01.06.2014 04:29:34
- Last modified 12.04.2025 10:46:40
sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux (RHEL) 5 produces an archive with an fstab file potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which migh...
CVE-2011-4083
- EPSS 0.21%
- Published 17.02.2014 16:55:07
- Last modified 11.04.2025 00:51:21
The sosreport utility in the Red Hat sos package before 1.7-9 and 2.x before 2.2-17 includes (1) Certificate-based Red Hat Network private entitlement keys and the (2) private key for the entitlement in an archive of debugging information, which migh...
CVE-2012-2664
- EPSS 0.34%
- Published 29.06.2012 19:55:03
- Last modified 11.04.2025 00:51:21
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attac...