CVE Vulnerabilities

CVE-2014-0135

Published: May 08, 2014 | Modified: May 09, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
1.9 LOW
AV:L/AC:M/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other sensitive information by reading the file.

Affected Software

Name Vendor Start Version End Version
Kafo Theforeman 0.0.11 0.0.11
Kafo Theforeman 0.3.2 0.3.2
Kafo Theforeman 0.0.8 0.0.8
Kafo Theforeman 0.3.10 0.3.10
Kafo Theforeman 0.2.2 0.2.2
Kafo Theforeman 0.3.3 0.3.3
Kafo Theforeman 0.0.10 0.0.10
Kafo Theforeman 0.3.6 0.3.6
Kafo Theforeman 0.0.15 0.0.15
Kafo Theforeman 0.0.9 0.0.9
Kafo Theforeman 0.0.3 0.0.3
Kafo Theforeman 0.3.0 0.3.0
Kafo Theforeman * 0.3.16
Kafo Theforeman 0.3.11 0.3.11
Kafo Theforeman 0.3.15 0.3.15
Kafo Theforeman 0.0.17 0.0.17
Kafo Theforeman 0.0.16 0.0.16
Kafo Theforeman 0.3.13 0.3.13
Kafo Theforeman 0.0.6 0.0.6
Kafo Theforeman 0.4.0 0.4.0
Kafo Theforeman 0.0.2 0.0.2
Kafo Theforeman 0.3.8 0.3.8
Kafo Theforeman 0.3.1 0.3.1
Kafo Theforeman 0.3.9 0.3.9
Kafo Theforeman 0.0.14 0.0.14
Kafo Theforeman 0.2.0 0.2.0
Kafo Theforeman 0.0.1 0.0.1
Kafo Theforeman 0.3.4 0.3.4
Kafo Theforeman 0.2.1 0.2.1
Kafo Theforeman 0.3.14 0.3.14
Kafo Theforeman 0.0.12 0.0.12
Kafo Theforeman 0.5.0 0.5.0
Kafo Theforeman 0.0.5 0.0.5
Kafo Theforeman 0.0.13 0.0.13
Kafo Theforeman 0.3.12 0.3.12
Kafo Theforeman 0.1.0 0.1.0
Kafo Theforeman 0.0.4 0.0.4
Kafo Theforeman 0.5.1 0.5.1
Kafo Theforeman 0.0.7 0.0.7
Kafo Theforeman 0.3.7 0.3.7
Kafo Theforeman 0.3.5 0.3.5

References