Pulp in Red Hat CloudForms before 1.1 uses world-readable permissions for pulp.conf, which allows local users to read the administrative password by reading this file.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Cloudforms |
Redhat |
* |
1.0 (including) |
References