CVE-2012-3538

Description

Pulp in Red Hat CloudForms before 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/80547

http://www.securityfocus.com/bid/56819

http://secunia.com/advisories/51472

http://rhn.redhat.com/errata/RHSA-2012-1543.html

http://osvdb.org/88139

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3