2017-04-03 15:00:00
mitre
PUBLISHED
The default configuration for Cougar-LG stores sensitive information under the web root with insufficient access control, which might allow remote attackers to obtain private ssh keys.