Moderate severityGHSA Advisory· Published Sep 1, 2022· Updated Aug 3, 2024
CVE-2022-2806
CVE-2022-2806
Description
It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
sosreportPyPI | < 4.4 | 4.4 |
Affected products
2- Range: < 4.4
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-7pf9-7cff-f854ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-2806ghsaADVISORY
- github.com/sosreport/sos/commit/5fd872c64c53af37015f366295e0c2418c969757ghsaWEB
- github.com/sosreport/sos/pull/2947ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.