The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure.
References
Link | Resource |
---|---|
https://cfengine.com/blog/2021/cve-2021-38379-and-cve-2021-36756/ | Vendor Advisory |
https://docs.cfengine.com/docs/3.18/enterprise-cfengine-guide.html | Vendor Advisory |
Configurations
Information
Published : 2021-10-27 08:15
Updated : 2021-11-04 06:37
NVD link : CVE-2021-38379
Mitre link : CVE-2021-38379
JSON object : View
CWE
CWE-276
Incorrect Default Permissions
Products Affected
northern.tech
- cfengine