Insecure File Permissions in libcgroup 0.41: Information Disclosure Vulnerability

Insecure File Permissions in libcgroup 0.41: Information Disclosure Vulnerability

CVE-2018-14348 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:N

libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information.

Learn more about our Web Application Penetration Testing UK.