virt-bootstrap 1.1.0 allows local users to discover a root password by listing a process, because this password may be present in the --root-password option to virt_bootstrap.py.
References
Configurations
Information
Published : 2019-07-05 07:15
Updated : 2020-11-06 17:15
NVD link : CVE-2019-13314
Mitre link : CVE-2019-13314
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
redhat
- virt-bootstrap