Owen Synge

1 exploit Active since Jun 2015
CVE-2015-3010 WRITEUP WRITEUP
ceph-deploy < 1.5.23 - Unauthorized Exposure of Sensitive Information via Weak Keyring Permissions
ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.