varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by reading the files. NOTE: some of these details are obtained from third party information.
References
Configurations
History
02 Aug 2022, 16:29
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.3:*:*:*:*:*:*:* |
21 Jun 2022, 17:00
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:varnish-cache:varnish_cache:3.0.3:*:*:*:*:*:*:* |
Information
Published : 2014-05-08 14:29
Updated : 2024-02-04 18:35
NVD link : CVE-2013-0345
Mitre link : CVE-2013-0345
CVE.ORG link : CVE-2013-0345
JSON object : View
Products Affected
varnish_cache_project
- varnish_cache
CWE
CWE-264
Permissions, Privileges, and Access Controls