Описание
The Secondary server in Threat Intelligence Exchange (TIE) before 1.2.0 uses weak permissions for unspecified (1) configuration files and (2) installation logs, which allows local users to obtain sensitive information by reading the files.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.1 (включая)
cpe:2.3:a:mcafee:threat_intelligence_exchange:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
2.1 Low
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The Secondary server in Threat Intelligence Exchange (TIE) before 1.2.0 uses weak permissions for unspecified (1) configuration files and (2) installation logs, which allows local users to obtain sensitive information by reading the files.
EPSS
Процентиль: 13%
0.00042
Низкий
2.1 Low
CVSS2
Дефекты
CWE-264