VYPR
Unrated severityNVD Advisory· Published Jun 29, 2012· Updated Jun 16, 2026

CVE-2012-2664

CVE-2012-2664

Description

The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attackers to obtain passwords or password hashes.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Red Hat/Sos2 versions
    cpe:2.3:a:redhat:sos:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:redhat:sos:*:*:*:*:*:*:*:*range: <=2.2-18
    • (no CPE)range: <2.2-29

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.