1 results (0.002 seconds)
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 1
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 1CVE-2013-1977
https://notcve.org/view.php?id=CVE-2013-1977
OpenStack devstack uses world-readable permissions for keystone.conf, which allows local users to obtain sensitive information such as the LDAP password and admin_token secret by reading the file. OpenStack devstack utiliza permisos de lecturas globales para keystone.conf, lo que permite a usuarios locales obtener información sensible como las contraseñas LDAP y el secreto de admin_token mediante la lectura del archivo. • http://www.openwall.com/lists/oss-security/2013/04/19/2 http://www.openwall.com/lists/oss-security/2013/04/23/7 https://bugs.launchpad.net/devstack/+bug/1168252 • CWE-264: Permissions, Privileges, and Access Controls •