Vulnerabilities (CVE)

Filtered by vendor Theforeman Subscribe
Filtered by product Kafo
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-0135 1 Theforeman 1 Kafo 2024-11-21 1.9 LOW N/A
Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other sensitive information by reading the file.