Lucene search

CVE-2019-3891

🗓️ 12 Apr 2019 13:50:20Reported by redhat.comType

A world-readable log file in Red Hat Satellite 6.4 exposes Candlepin database credentials, enabling a local user to disrupt package updates. Mitigation involves modifying file permissions

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Prion	Design/Logic Flaw	15 Apr 201912:31	–	prion
Veracode	Information Disclosure	20 May 201900:56	–	veracode
Cvelist	CVE-2019-3891	12 Apr 201920:25	–	cvelist
CVE	CVE-2019-3891	15 Apr 201912:31	–	cve
NVD	CVE-2019-3891	15 Apr 201912:31	–	nvd
Tenable Nessus	RHEL 7 : Satellite Server (RHSA-2019:1222)	14 May 201900:00	–	nessus
OSV	RHSA-2019:1222 Red Hat Security Advisory: Satellite 6.5 Release	13 Sep 202416:56	–	osv
RedHat Linux	(RHSA-2019:1222) Moderate: Satellite 6.5 Release	14 May 201912:30	–	redhat

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-3891
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Apr 2019 13:20Current

1.1Low risk

Vulners AI Score1.1

EPSS0.00042