Skip to main content

Wtf

1 CVEs product

Monthly

CVE-2019-15716 MEDIUM POC PATCH This Month

WTF before 0.19.0 does not set the permissions of config.yml, which might make it easier for local attackers to read passwords or API keys if the permissions were misconfigured or were based on. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Wtf
NVD GitHub
CVSS 3.0
5.5
EPSS
0.5%
EPSS 0% CVSS 5.5
MEDIUM POC PATCH This Month

WTF before 0.19.0 does not set the permissions of config.yml, which might make it easier for local attackers to read passwords or API keys if the permissions were misconfigured or were based on. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Wtf
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy