VYPR
High severity7.8NVD Advisory· Published Dec 18, 2017· Updated Jun 17, 2026

CVE-2017-15104

CVE-2017-15104

Description

An access flaw was found in Heketi 5, where the heketi.json configuration file was world readable. An attacker having local access to the Heketi server could read plain-text passwords from the heketi.json file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/heketi/heketiGo
< 5.0.15.0.1

Affected products

4

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.