CVE-2024-2905
on github
Published
Severity
CVSS v3:
N/A
CVSS v2:
N/A
Description
A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potentially exposing sensitive authentication data to unauthorized access.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|