Katello: >> Katello >> 1.1 Security Vulnerabilities
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
CVSS Score
2.1
EPSS Score
0.001
Published
2013-03-01