The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure.
References
Link | Resource |
---|---|
https://cfengine.com/blog/2021/cve-2021-38379-and-cve-2021-36756/ | Vendor Advisory |
https://docs.cfengine.com/docs/3.18/enterprise-cfengine-guide.html | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2021-10-27 15:15
Updated : 2024-02-28 18:48
NVD link : CVE-2021-38379
Mitre link : CVE-2021-38379
CVE.ORG link : CVE-2021-38379
JSON object : View
Products Affected
northern.tech
- cfengine
CWE
CWE-276
Incorrect Default Permissions