Lucene search
K

259 matches found

Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.35 views

CentOS 7 : subscription-manager (RHSA-2023:4701)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4701 advisory. - A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1...

7.8CVSS8AI score0.00253EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/12/05 6:33 p.m.29 views

K000137798: Dbus Subscription Manager vulnerability CVE-2023-3899

Security Advisory Description A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By usi...

7.8CVSS8.3AI score0.00253EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/09/02 12:0 a.m.18 views

Fedora: Security Advisory for subscription-manager (FEDORA-2023-0f2f9bc779)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.00253EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/09/02 12:0 a.m.21 views

Fedora: Security Advisory for subscription-manager (FEDORA-2023-29a012c0db)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.00253EPSS
Exploits0References2
Fedora
Fedora
added 2023/09/01 1:29 a.m.33 views

[SECURITY] Fedora 37 Update: subscription-manager-1.29.37-1.fc37

The Subscription Manager package provides programs and libraries to allow use rs to manage subscriptions and yum repositories from the Red Hat entitlement platform...

7.8CVSS7.8AI score0.00253EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/09/01 12:0 a.m.34 views

Fedora 38 : subscription-manager (2023-29a012c0db)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-29a012c0db advisory. Automatic update for subscription-manager-1.29.37-1.fc38. Changelog for subscription-manager Wed Aug 23 2023 Packit - 1.29.37-1 - Automatic commit of package...

7.8CVSS8AI score0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/09/01 12:0 a.m.24 views

Fedora 37 : subscription-manager (2023-0f2f9bc779)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-0f2f9bc779 advisory. Automatic update for subscription-manager-1.29.37-1.fc37. Changelog for subscription-manager Wed Aug 23 2023 Packit - 1.29.37-1 - Automatic commit of package...

7.8CVSS8AI score0.00253EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2023/08/28 6:41 p.m.29 views

subscription-manager security update

An update is available for subscription-manager. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The subscription-manager packages provide programs and libraries...

7.8CVSS6.2AI score0.00253EPSS
Exploits0
OSV
OSV
added 2023/08/28 6:41 p.m.34 views

RLSA-2023:4706 Important: subscription-manager security update

The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Rocky Enterprise Software Foundation entitlement platform. Security Fixes: subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allow...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/28 12:0 a.m.21 views

Rocky Linux 8 : subscription-manager (RLSA-2023:4706)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:4706 advisory. - A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1...

7.8CVSS8AI score0.00253EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2023/08/24 4:21 a.m.51 views

subscription-manager security update

An update is available for subscription-manager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The subscription-manager packages provide programs and libraries...

7.8CVSS6.6AI score0.00253EPSS
Exploits0
OSV
OSV
added 2023/08/24 4:21 a.m.18 views

RLSA-2023:4708 Important: subscription-manager security update

The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Rocky Enterprise Software Foundation entitlement platform. Security Fixes: subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allow...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/24 12:0 a.m.11 views

Rocky Linux 9 : subscription-manager (RLSA-2023:4708)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:4708 advisory. - A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1...

7.8CVSS8AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/08/24 12:0 a.m.44 views

AlmaLinux 8 : subscription-manager (ALSA-2023:4706)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:4706 advisory. - A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1...

7.8CVSS8AI score0.00253EPSS
Exploits0References2
OSV
OSV
added 2023/08/23 11:15 a.m.7 views

AZL-28099 CVE-2023-3899 affecting package subscription-manager 1.29.30-2

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 11:15 a.m.5 views

AZL-37046 CVE-2023-3899 affecting package subscription-manager 1.29.30-2

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2023/08/23 11:15 a.m.21 views

CVE-2023-3899

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.6AI score0.00253EPSS
Exploits0References12
Prion
Prion
added 2023/08/23 11:15 a.m.32 views

Design/Logic Flaw

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

4.3CVSS7.5AI score0.00253EPSS
Exploits0References12Affected Software20
Cvelist
Cvelist
added 2023/08/23 10:49 a.m.36 views

CVE-2023-3899 Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References10
CVE
CVE
added 2023/08/23 10:49 a.m.556 views

CVE-2023-3899

CVE-2023-3899 affects subscription-manager. The vulnerability stems from the D-Bus interface com.redhat.RHSM1 exposing many methods to all users, allowing a low-privileged local user to tamper with registration state via Config.SetAll(). This enables arbitrary directives to /etc/rhsm/rhsm.conf, l...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder