Vulnerabilities

CVE-2024-2905

by Fred · 25/04/2024

A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potentially exposing sensitive authentication data to unauthorized access.

More information : https://access.redhat.com/errata/RHSA-2024:3401

Similar

Tags: Cybersecurity Alert