Medium severity5.5NVD Advisory· Published Apr 20, 2017· Updated May 13, 2026
CVE-2016-6341
CVE-2016-6341
Description
oVirt Engine before 4.0.3 does not include DWH_DB_PASSWORD in the list of keys to hide in log files, which allows local users to obtain sensitive password information by reading engine log files.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.ovirt.org/release/4.0.3/nvdPatchVendor Advisory
- www.securityfocus.com/bid/92665nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
News mentions
0No linked articles in our index yet.