CVE-2017-15918

Name of the Vulnerable Software and Affected Versions Sera version 1.2

Description The issue allows for trivial privilege escalation and exposes user and system keychains to local attacks because it stores the user's login password in plain text in their home directory.

Recommendations For Sera version 1.2, consider removing or securing the plain text password storage to prevent local attacks and privilege escalation. As a temporary workaround, restrict access to the home directory where the password is stored to minimize the risk of exploitation.