Redhat: >> Openstack Folsom Security Vulnerabilities
PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.
CVSS Score
4.4
EPSS Score
0.001
Published
2013-04-10
Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files.
CVSS Score
2.1
EPSS Score
0.0
Published
2013-04-10