0.0004 Low
EPSS
Percentile
5.1%
github.com/heketi/heketi is vulnerable to information disclosure. An attacker with local access to the Heketi server is able to read confidential information, such as the gluster-block passwords due to insecure logging of information.
access.redhat.com/errata/RHSA-2020:4143
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1845387
github.com/heketi/heketi/pull/1790
github.com/heketi/heketi/releases/tag/v10.1.0