rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, allowing remote man-in-the-middle attackers to obtain sensitive information
Reporter | Title | Published | Views | Family All 11 |
---|---|---|---|---|
![]() | RedHat Update for subscription-manager RHSA-2013:0788-01 | 9 May 201300:00 | – | openvas |
![]() | RedHat Update for subscription-manager RHSA-2013:0788-01 | 9 May 201300:00 | – | openvas |
![]() | CVE-2012-6137 | 21 May 201318:00 | – | cvelist |
![]() | RHEL 5 / 6 : subscription-manager (RHSA-2013:0788) | 7 May 201300:00 | – | nessus |
![]() | RHEL 6 : rhev-hypervisor6 (RHSA-2013:0907) | 8 Nov 201400:00 | – | nessus |
![]() | Code injection | 21 May 201318:55 | – | prion |
![]() | CVE-2012-6137 | 21 May 201318:55 | – | nvd |
![]() | (RHSA-2013:0788) Moderate: subscription-manager security update | 6 May 201300:00 | – | redhat |
![]() | (RHSA-2013:0907) Important: rhev-hypervisor6 security and bug fix update | 10 Jun 201300:00 | – | redhat |
![]() | Man-in-the-Middle (MitM) | 15 Jan 201908:52 | – | veracode |
Source | Link |
---|---|
securitytracker | www.securitytracker.com/id/1028520 |
exchange | www.exchange.xforce.ibmcloud.com/vulnerabilities/84020 |
securityfocus | www.securityfocus.com/bid/59674 |
bugzilla | www.bugzilla.redhat.com/show_bug.cgi |
secunia | www.secunia.com/advisories/53330 |
rhn | www.rhn.redhat.com/errata/RHSA-2013-0788.html |
osvdb | www.osvdb.org/93058 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo