CVE-2012-0863
EPSS 0.04%mumble - information disclosure
Published: 4/30/2012Modified: 4/28/2026
Also known as:DEBIAN-CVE-2012-0863
Description
Mumble 1.2.3 and earlier uses world-readable permissions for .local/share/data/Mumble/.mumble.sqlite files in home directories, which might allow local users to obtain a cleartext password and configuration data by reading a file.
Affected packages (2)
- Debian/mumblefrom 0, < 1.2.3-3
- Debian/mumblefrom 0, < 1.2.2-6+squeeze1