CVE-2014-3585

2019-11-2214:51:06

redhat

www.cve.org

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.6%

JSON

redhat-upgrade-tool: Does not check GPG signatures when upgrading versions

CNA Affected

[
  {
    "product": "redhat-upgrade-tool",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "through 2014-08-01"
      }
    ]
  }
]

References

access.redhat.com/security/cve/cve-2014-3585

bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3585