CVE-2016-5411: QCI: creates world readable /var/lib/ovirt-engine/setup/engine-DC-config.py contains sensitive password

Severity: Critical

CVSS Score: 9.8

/var/lib/ovirt-engine/setup/engine-DC-config.py in Red Hat QuickStart Cloud Installer (QCI) before 1.0 GA is created world readable and contains the root password of the deployed system.