Security Advisory

CVE-2019-15716

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-28 14:13:40

Last updated 2024-08-05 00:56:22

Assigner mitre

State PUBLISHED

Description

WTF before 0.19.0 does not set the permissions of config.yml, which might make it easier for local attackers to read passwords or API keys if the permissions were misconfigured or were based on unsafe OS defaults.

← Browse all CVEs View on cve.org ↗