Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sos\-Collector
(Sos\-Collector_project)| Repositories | https://github.com/sosreport/sos-collector |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-09-27 | CVE-2018-14650 | It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory. | Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_workstation, Sos\-Collector | 5.0 |