CVE-2018-14650 – sos-collector: incorrect permissions set on newly created files

https://notcve.org/view.php?id=CVE-2018-14650

27 Sep 2018 — It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory. Se ha descubierto que sos-collector no establece correctamente los permisos por defecto de los nuevos archivos creados, haciendo que todos los archivos creados por la herramienta puedan ser leídos por... • https://access.redhat.com/errata/RHSA-2018:3663 • CWE-276: Incorrect Default Permissions CWE-732: Incorrect Permission Assignment for Critical Resource •