IBM Cloud Private 2.1.0 could allow a local user to obtain the CA Private Key due to it being world readable in boot/master node. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
IBM
Information Disclosure
Cloud Private
NVD
CVSS 3.0
5.5
EPSS
0.4%