Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-2925

Опубликовано: 07 сент. 2011
Источник: redhat
CVSS2: 3.6
EPSS Низкий

Описание

Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication credentials in a log file, which allows local users to bypass authentication and perform unauthorized actions on jobs and message queues via a direct connection to the broker.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise MRG 1cuminWill not fix
MRG for RHEL-5 v. 2condorFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-ec2-enhancedFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-ec2-enhanced-hooksFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-job-hooksFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-low-latencyFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-wallabyFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2condor-wallaby-base-dbFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2cuminFixedRHSA-2011:124907.09.2011
MRG for RHEL-5 v. 2ruby-rhubarbFixedRHSA-2011:124907.09.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=731574cumin: broker username/password appears in the log file

EPSS

Процентиль: 17%
0.00055
Низкий

3.6 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-2925

ubuntu
больше 14 лет назад

Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication credentials in a log file, which allows local users to bypass authentication and perform unauthorized actions on jobs and message queues via a direct connection to the broker.

nvd логотип

CVE-2011-2925

nvd
больше 14 лет назад

Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication credentials in a log file, which allows local users to bypass authentication and perform unauthorized actions on jobs and message queues via a direct connection to the broker.

github логотип

GHSA-j3f2-xf7x-fhpq

github
больше 3 лет назад

Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication credentials in a log file, which allows local users to bypass authentication and perform unauthorized actions on jobs and message queues via a direct connection to the broker.

EPSS

Процентиль: 17%
0.00055
Низкий

3.6 Low

CVSS2