Описание
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-0164
- https://access.redhat.com/errata/RHSA-2014:0460
- https://access.redhat.com/errata/RHSA-2014:0461
- https://access.redhat.com/security/cve/CVE-2014-0164
- https://bugzilla.redhat.com/show_bug.cgi?id=1083847
- http://rhn.redhat.com/errata/RHSA-2014-0460.html
- http://rhn.redhat.com/errata/RHSA-2014-0461.html
EPSS
CVE ID
Связанные уязвимости
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.
openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise ...
EPSS