{"id":"CVE-2015-5160","details":"libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to obtain sensitive information via a process listing.","modified":"2025-08-09T19:01:27Z","published":"2018-08-20T21:29:00Z","references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2577.html"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2017/07/21/3"},{"type":"REPORT","url":"https://bugs.launchpad.net/ossn/+bug/1686743"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1245647"},{"type":"ADVISORY","url":"https://wiki.openstack.org/wiki/OSSN/OSSN-0079"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}