Insecure permissions (777) are set on $HOME/.singularity when it is newly created by Singularity (version from 3.3.0 to 3.5.1), which could lead to an information leak, and malicious redirection of operations performed against Sylabs cloud services.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-12-18T20:52:24
Updated: 2024-08-05T02:25:12.399Z
Reserved: 2019-12-11T00:00:00
Link: CVE-2019-19724
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-12-18T21:15:13.757
Modified: 2024-11-21T04:35:15.473
Link: CVE-2019-19724
Redhat
No data.