CVE-2021-3917 in coreos-installerinformación

Resumen

por MITRE • 2022-08-24

A flaw was found in the coreos-installer, where it writes the Ignition config to the target system with world-readable access permissions. This flaw allows a local attacker to have read access to potentially sensitive data. The highest threat from this vulnerability is to confidentiality.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

2021-11-01

Divulgación

2022-08-24

Moderación

aceptado

Artículo

VDB-207081

CPE

listo

EPSS

0.00223

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!