TF 0215 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Ensure that the certificate authorities file permissions are set to 600 or more restrictive
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
Description
The certificate authorities file is configured with permissions that are too permissive, allowing access beyond the file owner. This increases the risk that unauthorized users or processes could read or modify sensitive certificate data.
Impact
If exploited, unauthorized individuals could gain access to trusted certificate information, potentially enabling man-in-the-middle attacks, interception of encrypted traffic, or unauthorized system access. This undermines the security of authentication and encrypted communications across the environment.
Resolution
Change the certificate authorities file permissions to 600 or more restrictive if exist