Insecure permissions in hwameistor v0.14.3 allows...
High severity
Unreviewed
Published
Jul 24, 2024
to the GitHub Advisory Database
•
Updated Aug 27, 2024
Description
Published by the National Vulnerability Database
Jul 24, 2024
Published to the GitHub Advisory Database
Jul 24, 2024
Last updated
Aug 27, 2024
Insecure permissions in hwameistor v0.14.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
References