CVE-2021-3917 in coreos-installer
要約
〜によって MITRE • 2022年08月24日
A flaw was found in the coreos-installer, where it writes the Ignition config to the target system with world-readable access permissions. This flaw allows a local attacker to have read access to potentially sensitive data. The highest threat from this vulnerability is to confidentiality.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.