Elmo

**Name of the Vulnerable Software and Affected Versions** Ubuntu Metal as a Service (MaaS) versions 1.2 and 1.4 **Description** The issue allows local users to obtain RabbitMQ authentication credentials by reading a file with world-readable permissions. This affects the txlongpoll.yaml file. **Recommendations** For Ubuntu Metal as a Service (MaaS) version 1.2, update the permissions of the txlongpoll.yaml file to restrict access. For Ubuntu Metal as a Service (MaaS) version 1.4, update the permissions of the txlongpoll.yaml file to restrict access.