Vulnerabilities (CVE)

Filtered by vendor Ovirt Subscribe
Filtered by product Cockpit-ovirt
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10139 1 Ovirt 1 Cockpit-ovirt 2024-11-21 2.1 LOW 7.8 HIGH
During HE deployment via cockpit-ovirt, cockpit-ovirt generates an ansible variable file `/var/lib/ovirt-hosted-engine-setup/cockpit/ansibleVarFileXXXXXX.var` which contains the admin and the appliance passwords as plain-text. At the of the deployment procedure, these files are deleted.