Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5
CVE-2022-2806
- EPSS 0.04%
- Published 01.09.2022 21:15:09
- Last modified 21.11.2024 07:01:43
It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev
7.8
CVE-2015-7529
- EPSS 0.06%
- Published 06.11.2017 17:29:00
- Last modified 20.04.2025 01:37:25
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$host...
5.5
CVE-2015-3171
- EPSS 0.04%
- Published 25.07.2017 18:29:00
- Last modified 20.04.2025 01:37:25
sosreport 3.2 uses weak permissions for generated sosreport archives, which allows local users with access to /var/tmp/ to obtain sensitive information by reading the contents of the archive.
1