Redhat: >> Thermostat Security Vulnerabilities
Thermostat before 2.0.0 uses world-readable permissions for the web.xml configuration file, which allows local users to obtain user credentials by reading the file.
CVSS Score
2.1
EPSS Score
0.005
Published
2015-06-08