Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
Red Hat
Privilege Escalation
Openstack Essex
Openstack Folsom
NVD
CVSS 2.0
2.1
EPSS
0.0%