Katello: >> Katello Installer Security Vulnerabilities
Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by reading the file.
CVSS Score
2.1
EPSS Score
0.0
Published
2014-05-14