Vulnerability Database

300,830

Total vulnerabilities in the database

CVE-2019-10194

Sensitive passwords used in deployment and configuration of oVirt Metrics, all versions. were found to be insufficiently protected. Passwords could be disclosed in log files (if playbooks are run with -v) or in playbooks stored on Metrics or Bastion hosts.

Published: Jul 11, 2019
Updated: Nov 9, 2025
CVE: CVE-2019-10194
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-532

Affected Software
References

Software	From	Fixed in
ovirt / ovirt	-	-
redhat / virtualization_manager	4.3	4.3.x

http://www.securityfocus.com/bid/109140
https://access.redhat.com/errata/RHSA-2019:2499
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10194

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo