CVE-2018-20105

A Inclusion of Sensitive Information in Log Files vulnerability in yast2-rmt of SUSE Linux Enterprise Server 15; openSUSE Leap allows local attackers to learn the password if they can access the log file. This issue affects: SUSE Linux Enterprise Server 15 yast2-rmt versions prior to 1.2.2. openSUSE Leap yast2-rmt versions prior to 1.2.2.
Configurations

Configuration 1

cpe:2.3:a:yast2-rmt_project:yast2-rmt:*:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:15:*:*:*:*:*:*:*

Information

Published : 2020-01-27 09:15

Updated : 2020-02-27 11:15


NVD link : CVE-2018-20105

Mitre link : CVE-2018-20105

Products Affected
No products.
CWE
CWE-532

Insertion of Sensitive Information into Log File