CVE Vulnerabilities

CVE-2014-0164

Published: May 05, 2014 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.

Affected Software

Name Vendor Start Version End Version
Openshift Redhat 2.0.5 2.0.5
Openshift Redhat 1.2.7 1.2.7

References