Vulnerability in Redhat Cloudforms
CVE-2012-5605
Grinder in Red Hat CloudForms before 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files.
EPSS: 0.001 (24.1th percentile) — read the EPSS interpretation.
Affected products
- Redhat Cloudforms
- N/a — versions n/a
Weakness classification (CWE)
References
- 88141 (x_refsource_OSVDB, vdb-entry)
- secalert@redhat.com (x_refsource_MISC)
- secalert@redhat.com (x_refsource_MISC)
- 51472 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- cloudforms-grinder-insecure-permissions(80550) (vdb-entry, x_refsource_XF)
- RHSA-2012:1543 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- 56819 (vdb-entry, x_refsource_BID)