Security Advisory
CVE-2021-31540
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configuration.