Redhat: >> Thermostat >> 1.4 Security Vulnerabilities
Thermostat before 2.0.0 uses world-readable permissions for the web.xml configuration file, which allows local users to obtain user credentials by reading the file.
CVSS Score
2.1
EPSS Score
0.0
Published
2015-06-08