Bug #26450
closed
- Target version set to 1.21.1
- Private changed from Yes to No
This can be worked around by not granting "destroy_compute_resource" permissions to users that should not know the password.
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/6621 added
- Fixed in Releases 1.20.3, 1.21.1, 1.22.0 added
- Status changed from Ready For Testing to Closed
- Assignee set to Shira Maximov
- Subject changed from Compute resource delete via api returns password in plaintext to CVE-2019-3893: Compute resource delete via api returns password in plaintext
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by