vdsm is vulnerable to information disclosure. The vulnerability exists due to a race condition allowing sensitive values in log files to be stored in clear text.
access.redhat.com/errata/RHSA-2022:4764
access.redhat.com/security/cve/CVE-2022-0207
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=2033697
bugzilla.redhat.com/show_bug.cgi?id=2039248
gerrit.ovirt.org/c/vdsm/+/118025
gerrit.ovirt.org/gitweb?p=vdsm.git%3Ba=commit%3Bh=53b0036fc72d3b8877d4e7f047d705e5a4c722e8
gerrit.ovirt.org/gitweb?p=vdsm.git;a=commit;h=53b0036fc72d3b8877d4e7f047d705e5a4c722e8