Authorization

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to call a "restart" RPC method on any host accessible by the system, even if not belonging to him...

Code injection

redhat-certification 7 does not properly restrict the number of recursive definitions of entities in XML documents, allowing an unauthenticated user to run a "Billion Laugh Attack" by replying to XMLRPC methods when getting the status of an host...

Code injection

Files are accessible without restrictions from the /update/results page of redhat-certification 7 package, allowing an attacker to remove any file accessible by the apached user...

Authorization

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to remove a "system" file, that is an xml file with host related information, not belonging to him...

CVE-2018-10868

redhat-certification 7 does not properly restrict the number of recursive definitions of entities in XML documents, allowing an unauthenticated user to run a "Billion Laugh Attack" by replying to XMLRPC methods when getting the status of an host...

CVE-2018-10868

CVE-2018-10868 concerns Red Hat Certification (redhat-certification) 7, where the XML parser allows an unbounded number of recursive entity definitions. The root cause is improper restriction of recursive definitions in XML documents, enabling an unauthenticated user to trigger a memory/time exha...

CVE-2018-10867

Files are accessible without restrictions from the /update/results page of redhat-certification 7 package, allowing an attacker to remove any file accessible by the apached user...

CVE-2018-10867

CVE-2018-10867 affects Red Hat redhat-certification 7. The flaw is an access-control error on the /update/results page, allowing a remote attacker to delete any file accessible by the user running httpd (apache). Root cause: insufficient access restriction for update results. Impact: potential da...

CVE-2018-10866

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to remove a "system" file, that is an xml file with host related information, not belonging to him...

CVE-2018-10866

CVE-2018-10866 affects redhat-certification version 7. The vulnerability stems from the /configuration view not performing an authorization check, enabling an unauthenticated user to remove a host-specific XML file (a “system” file). This represents an integrity/availability risk without requirin...

CVE-2018-10865

The vulnerability CVE-2018-10865 affects redhat-certification version 7 and involves the /configuration view lacking proper authorization. An unauthenticated user can call a restart RPC method on any host accessible by the system, even if not owned by them, potentially causing disruption or denia...

CVE-2018-10863

It was discovered that redhat-certification 7 is not properly configured and it lists all files and directories in the /var/www/rhcert/store/transfer directory, through the /rhcert-transfer URL. An unauthorized attacker may use this flaw to gather sensible information...

CVE-2018-10863

CVE-2018-10863 affects redhat-certification 7, where improper configuration allows listing all files/directories under /var/www/rhcert/store/transfer via the /rhcert-transfer URL, enabling information disclosure. The impact is exposure of sensitive information, per multiple connected records. Exp...

Red Hat Certification 安全漏洞

Red Hat Certification is a software package from Red Hat USA. A security vulnerability exists in Red Hat-certification 7 that allows an unauthenticated user to invoke the "restart" RPC method on any accessible host. An attacker could exploit this vulnerability to cause a denial of service...

Red Hat Certification 访问控制错误漏洞

Red Hat Certification is a software package from Red Hat USA. An access control error vulnerability exists in Redhat redhat-certification 7 that stems from the component not restricting access to files in the update results page. An attacker could exploit this vulnerability to delete any file...

Red Hat Certification 访问控制错误漏洞

Red Hat Certification is a software package from Red Hat USA. An Access Control Error vulnerability exists in Redhat redhat-certification 7 that stems from an inability to properly limit the number of recursive definitions of entities in an XML document. An attacker could exploit the vulnerabilit...

PT-2021-8690 · Red Hat · Redhat-Certification

Name of the Vulnerable Software and Affected Versions: redhat-certification version 7 Description: The issue is related to improper configuration, which allows listing of all files and directories in the /var/www/rhcert/store/transfer directory through the "/rhcert-transfer" API endpoint. This...

Red Hat Certification 授权问题漏洞

Red Hat Certification is a software package from Red Hat USA. A security vulnerability exists in redhat-certification 7 that allows an unauthenticated user to invoke the "restart" RPC method on any accessible host. An attacker could exploit this vulnerability to cause a denial of service...

PT-2021-8692 · Red Hat · Redhat-Certification

Name of the Vulnerable Software and Affected Versions: redhat-certification version 7 Description: The issue concerns the /configuration view of redhat-certification, which fails to perform an authorization check. This allows an unauthenticated user to remove a system file, specifically an XML fi...

PT-2021-8693 · Red Hat +1 · Redhat-Certification +1

Name of the Vulnerable Software and Affected Versions: redhat-certification version 7 Description: The issue allows files to be accessible without restrictions from the "/update/results" page, enabling an attacker to remove any file accessible by the apached user. A remote attacker could exploit...