Rhevm Reports
Monthly
ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
The setup script in ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3, stores the reports database password in cleartext, which. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml), which allows. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
The setup script in ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3, stores the reports database password in cleartext, which. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.