Lucene search
RedhatCVELIST:CVE-2017-15104HistoryDec 18, 2017 - 7:00 p.m.
CVE-2017-15104
2017-12-1819:00:00
CWE-552
redhat
www.cve.org
1
An access flaw was found in Heketi 5, where the heketi.json configuration file was world readable. An attacker having local access to the Heketi server could read plain-text passwords from the heketi.json file.
CNA Affected
[
{
"product": "Heketi",
"vendor": "Heketi",
"versions": [
{
"status": "affected",
"version": "5.0"
}
]
}
]Related
veracode
veracode
Information Disclosure Through Insecure Defaults
2017-12-19 17:55:46
redhatcve
redhatcve
CVE-2017-15104
2017-12-18 17:16:37
CVE-2017-15103
2017-12-18 17:16:19
osv
osv
Information Exposure in Heketi
2022-02-15 01:57:18
CVE-2017-15104
2017-12-18 19:29:00
cve
cve
CVE-2017-15104
2017-12-18 19:29:00
prion
prion
Design/Logic Flaw
2017-12-18 19:29:00
nvd
nvd
CVE-2017-15104
2017-12-18 19:29:00
github
github
Information Exposure in Heketi
2022-02-15 01:57:18
fedora
fedora
[SECURITY] Fedora 26 Update: heketi-5.0.1-1.fc26
2018-01-10 22:23:58
[SECURITY] Fedora 27 Update: heketi-5.0.1-1.fc27
2018-01-10 22:39:22
redhat
redhat
(RHSA-2017:3481) Important: heketi security update
2017-12-18 17:14:51
nessus
nessus
RHEL 7 : heketi (RHSA-2017:3481)
2017-12-21 00:00:00
Fedora 26 : heketi (2017-f7cbe22fd8)
2018-01-11 00:00:00
Fedora 27 : heketi (2017-01ad8b3946)
2018-01-15 00:00:00
openvas
openvas
Fedora Update for heketi FEDORA-2017-f7cbe22fd8
2018-01-11 00:00:00
Fedora Update for heketi FEDORA-2017-01ad8b3946
2018-01-11 00:00:00