Описание
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
Дополнительная информация
Статус:
Critical
Дефект:
CWE-862
https://bugzilla.redhat.com/show_bug.cgi?id=1024614Satellite: Interface to create the initial administrator user remains open after installation
EPSS
Процентиль: 72%
0.00704
Низкий
7.5 High
CVSS2
Связанные уязвимости
nvd
около 12 лет назад
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
github
больше 3 лет назад
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
EPSS
Процентиль: 72%
0.00704
Низкий
7.5 High
CVSS2