Description
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.
Remediation
References
Related Vulnerabilities
MongoDb Insufficient Session Expiration Vulnerability (CVE-2019-2386)
Grafana Incorrect Authorization Vulnerability (CVE-2023-6152)
MySQL CVE-2018-3143 Vulnerability (CVE-2018-3143)
Plone CMS Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-33509)
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2011-1153)