CVE-2021-3917 in coreos-installer
Resumen
por MITRE • 2022-08-24
A flaw was found in the coreos-installer, where it writes the Ignition config to the target system with world-readable access permissions. This flaw allows a local attacker to have read access to potentially sensitive data. The highest threat from this vulnerability is to confidentiality.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.