PT-2013-1496 · Suse · Suse Cloud+1
Publicado
2013-12-02
·
Atualizado
2014-03-04
·
CVE-2012-0434
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Crowbar, as used in SUSE Cloud 1.0
Description
The server in Crowbar uses weak permissions for the production.log file. The impact and attack vectors of this issue are not specified.
Recommendations
For Crowbar, as used in SUSE Cloud 1.0, consider changing the permissions of the production.log file to more secure settings to mitigate potential risks.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Crowbar
Suse Cloud