Skip to main content

Katello Installer

1 CVEs product

Monthly

CVE-2013-4455 LOW POC PATCH Monitor

Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Katello Installer
NVD GitHub
CVSS 2.0
2.1
EPSS
0.0%
EPSS 0% CVSS 2.1
LOW POC PATCH Monitor

Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Katello Installer
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy