The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| ceph-deploy(PyPI) | 0 | 1.5.25 | N/A |
CVSS Metrics
