Grinder in Red Hat CloudForms before 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files.
References
Configurations
History
21 Nov 2024, 01:44
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/88141 - | |
References | () http://rhn.redhat.com/errata/RHSA-2012-1543.html - Vendor Advisory | |
References | () http://secunia.com/advisories/51472 - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/56819 - | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=828447 - | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=882138 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/80550 - |
Information
Published : 2013-01-04 22:55
Updated : 2024-11-21 01:44
NVD link : CVE-2012-5605
Mitre link : CVE-2012-5605
CVE.ORG link : CVE-2012-5605
JSON object : View
Products Affected
redhat
- cloudforms
CWE
CWE-264
Permissions, Privileges, and Access Controls