Security Advisory

CVE-2023-32303

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-12 20:55:07

Last updated 2025-01-23 20:24:55

Assigner GitHub_M

State PUBLISHED

Description

Planet is software that provides satellite data. The secret file stores the users Planet API authentication information. It should only be accessible by the user, but before version 2.0.1, its permissions allowed the users group and non-group to read the file as well. This issue was patched in version 2.0.1. As a workaround, set the secret file permissions to only user read/write by hand.

← Browse all CVEs View on cve.org ↗