CVE-2021-44216

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-44216

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-44216.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-44216

Downstream

SUSE-SU-2023:2126-1

Related

SUSE-SU-2023:2126-1

Published

2022-03-10T17:44:14.353Z

Modified

2026-02-24T01:39:03.015786Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

Northern.tech CFEngine Enterprise before 3.15.5 and 3.18.x before 3.18.1 has Insecure Permissions that may allow unauthorized local users to access the Apache and Mission Portal log files.

References

Affected packages

Git / github.com/cfengine/core

Affected ranges

Type: GIT
Repo: https://github.com/cfengine/core
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

5fa81b4c586daa33ca0896f73b428a93cb5bccbe

Introduced

b2e902351f51f30b46836494ae9cc1b38b3c6cf5

Fixed

b3170ef3f81becdaa41cec32b43a1b450f626bb1

Affected versions

3.*

3.18.0

3.18.0-1-build1

3.18.0-1-build2

3.18.0-1-build3

3.18.0-2

3.18.0-2-build1

3.18.0-2-build2

3.18.0-build3

3.18.1-build1

3.18.1-build2

3.18.1-build3

3.18.1-build4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-44216.json"