Skip to main content
CVE-2013-0162 LOW PATCH Monitor

The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Privilege Escalation Ruby Parser
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2012-5561 LOW Monitor

script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Katello
NVD GitHub
CVSS 2.0
2.1
EPSS
0.1%
CVE-2012-6116 LOW Monitor

modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak permissions (666) for the Candlepin bootstrap RPM, which allows local users to modify the Candlepin CA. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Katello Katello Configure
NVD GitHub
CVSS 2.0
2.1
EPSS
0.1%
CVE-2012-1568 LOW Monitor

The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a. Rated low severity (CVSS 1.9). No vendor patch available.

Red Hat Linux Authentication Bypass Fedora Enterprise Linux
NVD
CVSS 2.0
1.9
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy