A flaw was found in pki-core 10.10. Older versions are not affected.
When the pkispawn command is run in debug mode, admin credentials are stored in the installation log file, which is world readable.
Name: Christian Heimes
Created pki-core tracking bugs for this issue:
Affects: fedora-all [bug 1967401]
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2021:2235 https://access.redhat.com/errata/RHSA-2021:2235
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):