11 matches found
CVE-2021-25317 cups: ownership of /var/log/cups allows the lp user to create files as root
A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local attackers with control of the lp users to create files as root with 0644 permission...
CVE-2021-27175
An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl2g.cfg has cleartext passwords and 0644 permissions...
CVE-2021-27176
An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl5g.cfg has cleartext passwords and 0644 permissions...
CVE-2021-27176
An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl5g.cfg has cleartext passwords and 0644 permissions...
Design/Logic Flaw
An issue was discovered on FiberHome HG6245D devices through RP2613. wificustom.cfg has cleartext passwords and 0644 permissions...
CVE-2021-27174
The CVE-2021-27174 case concerns FiberHome HG6245D devices (via RP2613). The underlying issue is that wifi_custom.cfg stores cleartext passwords and is accessible with 0644 file permissions, exposing credentials and creating a confidentiality risk. The connected Red Hat, CNVD, and CVE records cor...
CVE-2021-27175
The CVE-2021-27175 entry concerns FiberHome HG6245D devices (RP2613) where the wifictl_2g.cfg file stores credentials in cleartext and is set to 0644 permissions. This combination allows read access to sensitive credentials, representing a local or network-visible risk depending on access to the ...
CVE-2021-27175
An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl2g.cfg has cleartext passwords and 0644 permissions...
CVE-2015-8100
The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file...
Code injection
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, uses 0644 permissions for the vm-support archive, which allows local users to obtain sensitive information by extracting files from this archive...
CVE-2008-6756
ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf, which allows local users to obtain the database username and password by reading this file...