VYPR
Medium severity5.5NVD Advisory· Published Oct 23, 2007· Updated Jun 16, 2026

CVE-2007-5626

CVE-2007-5626

Description

make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffing the network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Bacula/Bacula2 versions
    cpe:2.3:a:bacula:bacula:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bacula:bacula:*:*:*:*:*:*:*:*range: <=2.2.5
    • (no CPE)range: <=2.2.5

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.