Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.1
CVE-2012-5509
- EPSS 0.1%
- Published 12.03.2013 22:55:01
- Last modified 11.04.2025 00:51:21
aeolus-configserver-setup in the Aeolas Configuration Server, as used in Red Hat CloudForms Cloud Engine before 1.1.2, uses world-readable permissions for a temporary file in /tmp, which allows local users to read credentials by reading this file.
2.1
CVE-2012-6117
- EPSS 0.1%
- Published 12.03.2013 22:55:01
- Last modified 11.04.2025 00:51:21
Aeolus Configuration Server, as used in Red Hat CloudForms Cloud Engine before 1.1.2, uses world-readable permissions for /var/log/aeolus-configserver/configserver.log, which allows local users to read plaintext passwords by reading the log file.
1