Vulnerability Details CVE-2016-5432
The ovirt-engine-provisiondb utility in Red Hat Enterprise Virtualization (RHEV) Engine 4.0 allows local users to obtain sensitive database provisioning information by reading log files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.9%
CVSS Severity
CVSS v3 Score 3.3
CVSS v2 Score 2.1
References
- http://rhn.redhat.com/errata/RHSA-2016-1967.html
- http://www.securityfocus.com/bid/92694
- https://bugzilla.redhat.com/show_bug.cgi?id=1371428
- https://gerrit.ovirt.org/#/q/I40c88ad48f8f7c2b8e06802137870b0c198b5129
- http://rhn.redhat.com/errata/RHSA-2016-1967.html
- http://www.securityfocus.com/bid/92694
- https://bugzilla.redhat.com/show_bug.cgi?id=1371428
- https://gerrit.ovirt.org/#/q/I40c88ad48f8f7c2b8e06802137870b0c198b5129
Products affected by CVE-2016-5432
-
cpe:2.3:a:redhat:enterprise_virtualization:4.0
-
cpe:2.3:o:redhat:enterprise_linux:7.0