Insecure permissions in kuma v2.7.0 allows attackers to...
High severity
Unreviewed
Published
Jul 25, 2024
to the GitHub Advisory Database
•
Updated Aug 1, 2024
Description
Published by the National Vulnerability Database
Jul 25, 2024
Published to the GitHub Advisory Database
Jul 25, 2024
Last updated
Aug 1, 2024
Insecure permissions in kuma v2.7.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
References