Описание
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=879094Katello: /etc/katello/secure/passphrase is world readable
EPSS
Процентиль: 30%
0.00109
Низкий
2.1 Low
CVSS2
Связанные уязвимости
nvd
почти 13 лет назад
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
github
больше 3 лет назад
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
EPSS
Процентиль: 30%
0.00109
Низкий
2.1 Low
CVSS2