Medium severity4.6NVD Advisory· Published Apr 14, 2017· Updated May 13, 2026

CVE-2016-7060

Description

The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the display.

Affected products

Red Hat/Quickstart Cloud Installer
cpe:2.3:a:redhat:quickstart_cloud_installer:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97678nvdThird Party AdvisoryVDB Entry
bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party AdvisoryVDB Entry
access.redhat.com/errata/RHSA-2017:0256nvd

News mentions

No linked articles in our index yet.

cvss	0.299
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000