← Back to CVEs
CVE-2022-0207
MEDIUM4.7
Description
A race condition was found in vdsm. Functionality to obfuscate sensitive values in log files that may lead to values being stored in clear text.
CVE Details
CVSS v3.1 Score4.7
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack VectorLOCAL
ComplexityHIGH
Privileges RequiredLOW
User InteractionNONE
Published8/26/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
ovirt:vdsmredhat:enterprise_linuxredhat:virtualizationredhat:virtualization_for_ibm_power_little_endianredhat:virtualization_host
Weaknesses (CWE)
CWE-362CWE-362
References
https://access.redhat.com/security/cve/CVE-2022-0207(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=2033697(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=2039248(secalert@redhat.com)
https://gerrit.ovirt.org/c/vdsm/+/118025(secalert@redhat.com)
https://gerrit.ovirt.org/gitweb?p=vdsm.git%3Ba=commit%3Bh=53b0036fc72d3b8877d4e7f047d705e5a4c722e8(secalert@redhat.com)
https://access.redhat.com/security/cve/CVE-2022-0207(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=2033697(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=2039248(af854a3a-2127-422b-91ae-364da2661108)
https://gerrit.ovirt.org/c/vdsm/+/118025(af854a3a-2127-422b-91ae-364da2661108)
https://gerrit.ovirt.org/gitweb?p=vdsm.git%3Ba=commit%3Bh=53b0036fc72d3b8877d4e7f047d705e5a4c722e8(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.