Incorrect Access Control in OctoPrint Logging Subsystem

Incorrect Access Control in OctoPrint Logging Subsystem

CVE-2021-32560 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not *.log files.

Learn more about our Cis Benchmark Audit For Print Devices.