Описание
manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Satellite 5.0 | Server | Will not fix | ||
| Red Hat Network Satellite Server v 5.1 | jfreechart | Fixed | RHSA-2008:0630 | 13.08.2008 |
| Red Hat Network Satellite Server v 5.1 | mod_perl | Fixed | RHSA-2008:0630 | 13.08.2008 |
| Red Hat Network Satellite Server v 5.1 | perl-Crypt-CBC | Fixed | RHSA-2008:0630 | 13.08.2008 |
| Red Hat Network Satellite Server v 5.1 | rhn-web | Fixed | RHSA-2008:0630 | 13.08.2008 |
| Red Hat Network Satellite Server v 5.1 | tomcat5 | Fixed | RHSA-2008:0630 | 13.08.2008 |
Показывать по
10
Дополнительная информация
Статус:
Low
https://bugzilla.redhat.com/show_bug.cgi?id=452461Satellite: information disclosure via manzier.pxt RPC script
EPSS
Процентиль: 69%
0.00616
Низкий
3.3 Low
CVSS2
Связанные уязвимости
CVSS3: 9.1
nvd
около 17 лет назад
manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.
CVSS3: 9.1
github
больше 3 лет назад
manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.
EPSS
Процентиль: 69%
0.00616
Низкий
3.3 Low
CVSS2