SoS Project SoS 3.2

CPE Details

SoS Project SoS 3.2
sos_project
sos
3.2
2019-09-26
16h02 +00:00
2019-09-26
16h02 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:sos_project:sos:3.2:-:*:*:*:*:*:*

Informations

Vendor

sos_project

Product

sos

Version

3.2

Update

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-2806 2022-09-01 17h58 +00:00 It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev
5.5
Moyen
CVE-2015-7529 2017-11-06 16h00 +00:00 sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.
7.8
Haute
CVE-2015-3171 2017-07-25 16h00 +00:00 sosreport 3.2 uses weak permissions for generated sosreport archives, which allows local users with access to /var/tmp/ to obtain sensitive information by reading the contents of the archive.
5.5
Moyen