Lucene search
RedhatCVELIST:CVE-2012-6117HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-6117
2022-10-0316:15:27
redhat
www.cve.org
aeolus configuration server
red hat cloudforms
plaintext passwords
log file
local users
Aeolus Configuration Server, as used in Red Hat CloudForms Cloud Engine before 1.1.2, uses world-readable permissions for /var/log/aeolus-configserver/configserver.log, which allows local users to read plaintext passwords by reading the log file.
Related
cve
cve
CVE-2012-6117
2022-10-03 16:15:27
nvd
nvd
CVE-2012-6117
2013-03-12 22:55:01
veracode
veracode
Information Disclosure
2019-05-02 04:53:11
prion
prion
Design/Logic Flaw
2013-03-12 22:55:00