Sensitive Information Leakage in Eucalyptus Cloud Log Files

Sensitive Information Leakage in Eucalyptus Cloud Log Files

CVE-2014-5038 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Eucalyptus 3.0.0 through 4.0.1, when the log level is set to DEBUG or lower, logs user and system passwords, which allows local users to obtain sensitive information by reading the cloud log files.

Learn more about our Cloud Audit.