Описание
It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
Отчет
Not vulnerable. This issue did not affect the versions of openshift-origin-node-util as shipped with any current versions of Red Hat Open Shift Enterprise as they do not include the watchman code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Enterprise 1 | openshift-origin-node-util | Not affected | ||
| Red Hat OpenShift Enterprise 2 | openshift-origin-node-util | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-732
https://bugzilla.redhat.com/show_bug.cgi?id=1064100node-util: world writable files
EPSS
Процентиль: 12%
0.0004
Низкий
3.2 Low
CVSS2
Связанные уязвимости
CVSS3: 5.5
nvd
больше 3 лет назад
It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
CVSS3: 5.5
github
больше 3 лет назад
It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
EPSS
Процентиль: 12%
0.0004
Низкий
3.2 Low
CVSS2