CVE-2018-16494

In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or execution of newly created files and directories. Insecure umask setting was present throughout the Versa servers.
References
Link Resource
https://hackerone.com/reports/1168191 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:o:versa-networks:versa_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:versa-networks:versa_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:versa-networks:versa_operating_system:*:*:*:*:*:*:*:*

Information

Published : 2021-05-26 07:15

Updated : 2021-06-04 03:04


NVD link : CVE-2018-16494

Mitre link : CVE-2018-16494

Products Affected
No products.
CWE