6 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-2667
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hammer CLI, a CLI utility for Foreman, before version 0.10.0, did not explicitly set the verifyssl flag for apipie-bindings that disable it by default. As a...
RHEL 7 : rubygem-hammer_cli (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - rubygem-hammercli: no verification of API server's SSL certificate CVE-2017-2667 Note that Nessus has not tested fo...
CVE-2017-2667
It was found that the hammercli command line client disables SSL/TLS certificate verification by default. A man-in-the-middle MITM attacker could use this flaw to spoof a valid certificate...
CVE-2017-2667
CVE-2017-2667 details (Mode C): Hammer CLI (Foreman) before version 0.10.0 does not explicitly enable SSL certificate verification for apipie-bindings, which disables verify_ssl by default. This can cause server certificates to be unchecked and enable MITM attacks. Affected component: Hammer CLI ...
RHEL 7 : Satellite 6.3 (RHSA-2018:0336)
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0336 advisory. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitorin...
Important: Red Hat Security Advisory: Satellite 6.3 security, bug fix, and enhancement update
An update is now available for Red Hat Satellite. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...