Lucene search
K

4 matches found

Circl
Circl
added 2022/05/21 12:30 a.m.6 views

CVE-2022-29186

creationtimestamp| type| source ---|---|--- 2022-05-21 00:30:57+00:00| seen| https://t.me/cibsecurity/43089...

9.8CVSS8.7AI score0.01101EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/20 8:20 p.m.37 views

CVE-2022-29186 Use of Hard-coded Cryptographic Key in rundeck/rundeck, rundeckpro/enterprise

Rundeck is an open source automation service with a web console, command line tools and a WebAPI. Rundeck community and rundeck-enterprise docker images contained a pre-generated SSH keypair. If the idrsa.pub public key of the keypair was copied to authorizedkeys files on remote host, those hosts...

9.1CVSS9.8AI score0.01101EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/05/20 8:20 p.m.5 views

CVE-2022-29186 Use of Hard-coded Cryptographic Key in rundeck/rundeck, rundeckpro/enterprise

Rundeck is an open source automation service with a web console, command line tools and a WebAPI. Rundeck community and rundeck-enterprise docker images contained a pre-generated SSH keypair. If the idrsa.pub public key of the keypair was copied to authorizedkeys files on remote host, those hosts...

9.1CVSS7.3AI score0.01101EPSS
Exploits0References2
CVE
CVE
added 2022/05/20 8:20 p.m.91 views

CVE-2022-29186

CVE-2022-29186 affects Rundeck Docker images (community and enterprise) versions 4.0 and earlier, where a pre-generated id_rsa.pub SSH keypair was included in the image. If this public key was copied to authorized_keys on a remote host, anyone with the corresponding private key could access those...

9.8CVSS9.7AI score0.01101EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder