← back
CVE-2014-3561

CVE-2014-3561

EPSS 0.4%
The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive information by listing the processes.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2014-1947.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/99096http://www.securitytracker.com/id/1031291