Описание
The Linux deprivileged user vpuser in Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) can read the entire file system content, including files belonging to other users and having restricted access (like, for example, the root password hash).
EPSS
Процентиль: 12%
0.0004
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-266
Связанные уязвимости
CVSS3: 6.8
github
7 месяцев назад
The Linux deprivileged user vpuser in Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) can read the entire file system content, including files belonging to other users and having restricted access (like, for example, the root password hash).
EPSS
Процентиль: 12%
0.0004
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-266