CVE-2022-2806 - AskarLabs CVE Database

CVE-2022-2806

Vendor N/A

Product ovirt-log-collector

Weakness CWE-200 · Info exposure

Published September 1, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev

Key dates

02Disclosure timeline

September 1, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-2806

Related vulnerabilities

04Related CVE

CVE-2021-36095 User enumeration issue using "lost password" feature CVE-2021-44739 Adobe Acrobat Reader DC add-on (AxAcroPDFLib.AxAcroPDF) src NTLMv2 SSO Auth leak vulnerability CVE-2019-1681 Cisco Network Convergence System 1000 Series TFTP Directory Traversal Vulnerability CVE-2026-2055 D-Link DIR-605L/DIR-619L DHCP Client Information information disclosure CVE-2022-41734 IBM Maximo Asset Management information disclosure