7.2 High
AI Score
Confidence
Low
0.07 Low
EPSS
Percentile
94.0%
The Piranha Configuration Tool in Piranha 0.8.6 does not properly restrict access to webpages, which allows remote attackers to bypass authentication and read or modify the LVS configuration via an HTTP POST request.
bugs.centos.org/view.php?id=6825
rhn.redhat.com/errata/RHSA-2014-0174.html
rhn.redhat.com/errata/RHSA-2014-0175.html
bugzilla.redhat.com/show_bug.cgi?id=1043040