varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by reading the files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
Privilege Escalation
Varnish Cache
NVD
CVSS 2.0
2.1
EPSS
0.0%
Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other sensitive information by. Rated low severity (CVSS 1.9).
Privilege Escalation
Kafo
NVD
CVSS 2.0
1.9
EPSS
0.1%
Prev
Page 2 of 2