How severe is CVE-2022-2084?

CVE-2022-2084 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2022-2084

Name: ubuntu_linux
Author: canonical

5.5MEDIUM

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

Publicado: 4/19/2023Actualizado: 2/5/2025

Descripción

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.

Análisis IAImpulsado por IA

Productos Afectados

canonicalcloud-init

canonicalubuntu_linux

18.04

canonicalubuntu_linux

20.04

canonicalubuntu_linux

21.10

canonicalubuntu_linux

22.04

Referencias

https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c
Patch
https://ubuntu.com/security/notices/USN-5496-1
Broken Link
https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c
Patch
https://ubuntu.com/security/notices/USN-5496-1
Broken Link