CVE-2016-6322 (quickstart_cloud_installer)

Red Hat QuickStart Cloud Installer (QCI) uses world-readable permissions for /etc/qci/answers, which allows local users to obtain the root password for the deployed system by reading the file.

Leave a Reply