High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-09	CVE-2017-15131	Improper Access Control vulnerability in multiple products It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. local low complexity freedesktop redhat CWE-284	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.