Mosquitto Information Disclosure Vulnerability
Eclipse Mosquitto is an open source messaging agent software from the Eclipse Foundation . A security vulnerability exists in Eclipse Mosquitto 1.4.12 and earlier versions, which stems from the program setting the mosquitto.db file as globally readable. A local attacker could exploit the...