CVE-2014-0135

LOW

—CVSS v3

1.9CVSS v2

0.10% EPSS (exploit probability)

CWE-264CWE

Description

Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other sensitive information by reading the file.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE