High severity7.8OSV Advisory· Published Jan 24, 2018· Updated Jun 17, 2026
CVE-2018-1000018
CVE-2018-1000018
Description
An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2ovirt-hosted-engine-setup-1.0.0_beta, ovirt-hosted-engine-setup-1.2.0_alpha1, ovirt-hosted-engine-setup-1.2.0_alpha2, …+ 1 more
- (no CPE)range: ovirt-hosted-engine-setup-1.0.0_beta, ovirt-hosted-engine-setup-1.2.0_alpha1, ovirt-hosted-engine-setup-1.2.0_alpha2, …
- (no CPE)range: <2.2.7
Patches
Vulnerability mechanics
References
2- bugzilla.redhat.com/show_bug.cginvdExploitIssue TrackingThird Party Advisory
- gerrit.ovirt.orgnvdVendor Advisory
News mentions
0No linked articles in our index yet.