First published: Tue Jan 11 2022(Updated: )
A race condition was found in vdsm functionality to obfuscate sensitive values in log files that may lead to values being stored unobfuscated.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ovirt Vdsm | >=4.30.1<4.50.0.4 | |
Redhat Virtualization | =4.0 | |
Redhat Virtualization For Ibm Power Little Endian | =4.0 | |
Redhat Virtualization Host | =4.0 | |
Redhat Enterprise Linux | =8.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-0207 is medium with a severity value of 4.7.
Ovirt Vdsm, Redhat Virtualization, Redhat Virtualization For Ibm Power Little Endian, and Redhat Virtualization Host are affected by CVE-2022-0207.
To fix CVE-2022-0207, it is recommended to update to a version higher than 4.50.0.4 for Ovirt Vdsm, or apply the necessary patch or update provided by the vendor for the affected software.
The Common Weakness Enumeration (CWE) ID for CVE-2022-0207 is CWE-362.