vulnerability
Alpine Linux: CVE-2015-3243: rsyslog some log files are created world-readable
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Jul 25, 2017 | Aug 24, 2018 | Aug 24, 2018 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Jul 25, 2017
Added
Aug 24, 2018
Modified
Aug 24, 2018
Description
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron.
Solution
alpine-linux-upgrade-rsyslog
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.