CVE-2013-1977
Published: 21 May 2013
OpenStack devstack uses world-readable permissions for keystone.conf, which allows local users to obtain sensitive information such as the LDAP password and admin_token secret by reading the file.
Notes
Author | Note |
---|---|
jdstrand | /etc/keystone is 0700 |