CVE-2015-3201

2015-06-08T10:59:10
ID CVE-2015-3201
Type cve
Reporter NVD
Modified 2016-12-30T21:59:28

Description

Thermostat before 2.0.0 uses world-readable permissions for the web.xml configuration file, which allows local users to obtain user credentials by reading the file.