CVE-2020-10762 – An information-disclosure flaw was found in the way that gluster-block before 0.5.1 logs t …

24 November 2020

Vuln ID: CVE-2020-10762

Published: 2020-11-24 17:15:10Z

Description: An information-disclosure flaw was found in the way that gluster-block before 0.5.1 logs the output from gluster-block CLI operations. This includes recording passwords to the cmd_history.log file which is world-readable. This flaw allows local users to obtain sensitive information by reading the log file. The highest threat from this vulnerability is to data confidentiality.

Source: NVD.NIST.GOV

Date:

24 November 2020

Categorie(s):

NVD

Tag(s):

NVD

TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland – SWN #38126 April 2024
Impact of organizational structure on ransomware outcomes: Where does your org fit in?26 April 2024
Hackers try to exploit WordPress plugin vulnerability that’s as severe as it gets26 April 2024
Kaiser Permanente handed over 13.4M people’s data to Microsoft, Google, others26 April 2024
Hackers make millions of attempts to exploit WordPress plugin vulnerability26 April 2024