CVE-2013-4455

2014-05-14T19:55:00
ID CVE-2013-4455
Type cve
Reporter cve@mitre.org
Modified 2014-05-15T13:11:00

Description

Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by reading the file.