Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2018/08/16 12:0 a.m.40 views

RHEL 7 : redhat-certification (RHSA-2018:2373)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2373 advisory. The redhat-certification package provides partners with a unified web-based user interface to certify their products for use on Red Hat...

9.8CVSS6.9AI score0.06182EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2018/08/09 5:23 p.m.89 views

Critical: Red Hat Security Advisory: redhat-certification security update

An update for redhat-certification is now available for Red Hat Certification for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS6.7AI score0.06182EPSS
Exploits0References4
NVD
NVD
added 2018/07/19 10:29 p.m.24 views

CVE-2018-10870

redhat-certification does not properly sanitize paths in rhcertStore.py:saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution...

9.8CVSS9.8AI score0.06182EPSS
Exploits0References3
CVE
CVE
added 2018/07/19 10:0 p.m.76 views

CVE-2018-10870

CVE-2018-10870 affects the Red Hat package redhat-certification. The issue is in rhcertStore.py:__saveResultsFile, which allows writing arbitrary files and can lead to remote code execution. Public sources (NVD, RHSA-2018:2373) describe the vulnerability as high/critical with network attack vecto...

9.8CVSS9.7AI score0.06182EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder