CVE-2021-45081

Опубликовано: 18 фев. 2022

Источник: redhat

CVSS3: 5.9

EPSS Низкий

Описание

An issue was discovered in Cobbler through 3.3.1. Routines in several files use the HTTP protocol instead of the more secure HTTPS.

A flaw was found in cobbler. The vulnerability occurs due to unsafe protocol usage and leads to cleartext transmission. This flaw allows an attacker to interact and see sensitive cleartext transmissions.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 8	rhn-tools:1.0/cobbler	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-319

https://bugzilla.redhat.com/show_bug.cgi?id=2056390cobbler: unsafe protocol usage

EPSS

Процентиль: 44%

0.00217

Низкий

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2021-45081

CVSS3: 5.9

ubuntu

почти 4 года назад

An issue was discovered in Cobbler through 3.3.1. Routines in several files use the HTTP protocol instead of the more secure HTTPS.

CVE-2021-45081

CVSS3: 5.9

nvd

почти 4 года назад

An issue was discovered in Cobbler through 3.3.1. Routines in several files use the HTTP protocol instead of the more secure HTTPS.

CVE-2021-45081

CVSS3: 5.9

debian

почти 4 года назад

An issue was discovered in Cobbler through 3.3.1. Routines in several ...

GHSA-332r-78jx-2j2m

CVSS3: 5.9

github

почти 4 года назад

An issue was discovered in Cobbler through 3.3.1. Routines in several files use the HTTP protocol instead of the more secure HTTPS.

EPSS

Процентиль: 44%

0.00217

Низкий

5.9 Medium

CVSS3