2 matches found
foreman: World readable file containing secrets
A sensitive information exposure vulnerability was found in foreman. Contents of tomcat's server.xml file, which contain passwords to candlepin's keystore and truststore, were found to be world readable...
PT-2023-30988 · Apache · Apache Tomcat
Name of the Vulnerable Software and Affected Versions: foreman affected versions not specified Description: A sensitive information exposure issue was found in foreman, where the contents of tomcat's server.xml file are world readable. This file contains passwords to candlepin's keystore and...