exploitDog

CVE-2021-3414

Опубликовано: 26 авг. 2022

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

A flaw was found in satellite. When giving granular permission related to the organization, other permissions allowing a user to view and manage other organizations are also granted. The highest threat from this vulnerability is to data confidentiality.

Ссылки

https://access.redhat.com/security/cve/CVE-2021-3414
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1926139
Issue Tracking
Vendor Advisory
https://access.redhat.com/security/cve/CVE-2021-3414
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1926139
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:redhat:satellite:6.7:*:*:*:*:*:*:*

EPSS

Процентиль: 33%

0.00134

Низкий

8.1 High

CVSS3

Дефекты

CWE-281

CWE-281

Связанные уязвимости

CVE-2021-3414

CVSS3: 8.2

redhat

почти 5 лет назад

A flaw was found in satellite. When giving granular permission related to the organization, other permissions allowing a user to view and manage other organizations are also granted. The highest threat from this vulnerability is to data confidentiality.

GHSA-9g8j-gq2h-2qfx

CVSS3: 8.1

github

больше 3 лет назад

A flaw was found in satellite. When giving granular permission related to the organization, other permissions allowing a user to view and manage other organizations are also granted. The highest threat from this vulnerability is to data confidentiality.

EPSS

Процентиль: 33%

0.00134

Низкий

8.1 High

CVSS3

Дефекты

CWE-281

CWE-281