Описание
Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.
Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-7450
- https://github.com/pulp/pulp/pull/627
- https://bugzilla.redhat.com/show_bug.cgi?id=1003326
- https://bugzilla.redhat.com/show_bug.cgi?id=1328345
- http://www.openwall.com/lists/oss-security/2016/04/18/11
- http://www.openwall.com/lists/oss-security/2016/04/18/5
- http://www.openwall.com/lists/oss-security/2016/05/20/1
Связанные уязвимости
redhat
больше 12 лет назад
Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.
CVSS3: 7.5
nvd
почти 9 лет назад
Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.