Skip to main content

Yum

1 CVEs product

Monthly

CVE-2014-0022 MEDIUM This Month

The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Yum
NVD
CVSS 2.0
5.0
EPSS
0.6%
EPSS 1% CVSS 5.0
MEDIUM This Month

The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Yum
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy