CVE-2020-10763
N/A
N/A
Summary
An information-disclosure flaw was found in the way Heketi before 10.1.0 logs sensitive information. This flaw allows an attacker with local access to the Heketi server to read potentially sensitive information such as gluster-block passwords.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | heketi | heketi 10.1.0 | affected |
Weaknesses
- CWE-532: CWE-532
ADP Enrichment
CVE Program Container
Additional References
- https://bugzilla.redhat.com/show_bug.cgi?id=1845387
- https://github.com/heketi/heketi/releases/tag/v10.1.0
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1845387
- https://github.com/heketi/heketi/releases/tag/v10.1.0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.