CVE-2014-0200 Information

Description

The Red Hat Enterprise Virtualization Manager reports (rhevm-reports) package before 3.3.3-1 uses world-readable permissions on the datasource configuration file (js-jboss7-ds.xml) which allows local users to obtain sensitive information by reading the file.

Reference

http://rhn.redhat.com/errata/RHSA-2014-0558.html http://www.securityfocus.com/bid/67684