Red Hat Storage Console 2.0

CPE Details

Red Hat Storage Console 2.0
redhat
storage_console
2.0
2017-07-04
13h44 +00:00
2021-08-09
17h00 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:storage_console:2.0:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

storage_console

Version

2.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-7481 2018-07-19 11h00 +00:00 Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated.
9.8
Critical
CVE-2017-2665 2018-07-06 11h00 +00:00 The skyring-setup command creates random password for mongodb skyring database but it writes password in plain text to /etc/skyring/skyring.conf file which is owned by root but read by local user. Any local user who has access to system running skyring service will be able to get password in plain text.
7
High
CVE-2016-7062 2017-06-27 18h00 +00:00 rhscon-ceph in Red Hat Storage Console 2 x86_64 and Red Hat Storage Console Node 2 x86_64 allows local users to obtain the password as cleartext.
7.8
High