Lucene search
HistoryFeb 05, 2014 - 6:55 p.m.
CVE-2012-0059
cve-2012-0059
red hat network
rhn
satellite
proxy
cleartext password
security vulnerability
remote administrators
xml-rpc
password exposure
6.7 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
50.2%
Spacewalk-backend in Red Hat Network (RHN) Satellite and Proxy 5.4 includes cleartext user passwords in an error message when a system registration XML-RPC call fails, which allows remote administrators to obtain the password by reading (1) the server log and (2) an email.
Affected configurations
Node
redhatnetwork_proxyMatch5.4
ORredhatsatelliteMatch5.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:network_proxy | redhat network proxy | eq | 5.4 |
| redhat:satellite | redhat satellite | eq | 5.4 |
Related
redhat
redhat
nvd
nvd
CVE-2012-0059
2014-02-05 18:55:06
prion
prion
Default credentials
2014-02-05 18:55:00
nessus
nessus
RHEL 5 / 6 : spacewalk-backend (RHSA-2012:0101)
2013-01-24 00:00:00
RHEL 5 / 6 : Red Hat Network Proxy spacewalk-backend (RHSA-2012:0102)
2013-01-24 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 01:09:20
cvelist
cvelist
CVE-2012-0059
2014-02-05 18:00:00
6.7 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
50.2%
Related for CVE-2012-0059