Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0235

Malware in sbrugna...

6.1CVSS6.3AI score0.00662EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-24948

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2024/09/15 11:23 p.m.10 views

RHSA-2016:2592 Red Hat Security Advisory: subscription-manager security, bug fix, and enhancement update

Bulletin has no description...

3.3CVSS3.5AI score0.00425EPSS
Exploits0References63
NVD
NVD
added 2022/07/14 3:15 p.m.7 views

CVE-2022-1662

In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This could allow unauthorized local users to view the password via the process list while convert2rhel is running. However, this...

5.5CVSS0.00203EPSS
Exploits0References1
Prion
Prion
added 2022/07/14 3:15 p.m.12 views

Default credentials

In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This could allow unauthorized local users to view the password via the process list while convert2rhel is running. However, this...

1.7CVSS5.3AI score0.00203EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/14 2:55 p.m.12 views

CVE-2022-1662

In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This could allow unauthorized local users to view the password via the process list while convert2rhel is running. However, this...

5.7AI score0.00203EPSS
Exploits0References1
CVE
CVE
added 2022/07/14 2:55 p.m.76 views

CVE-2022-1662

In CVE-2022-1662, the issue is that an Ansible playbook (ansible/run-convert2rhel.yml) for convert2rhel passes the Red Hat Subscription Manager password via the CLI, enabling unauthorized local users to view the password in the process list during execution. This affects convert2rhel when the ups...

5.5CVSS5.4AI score0.00203EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2022/05/10 8:0 p.m.62 views

CVE-2022-1662

A flaw was found in convert2rhel, where an Ansible playbook named ansible/run-convert2rhel.yml passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This flaw allows unauthorized local users to view the password via the process list while convert2rhel is running...

5.9CVSS2.9AI score0.00203EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/06/07 9:17 p.m.54 views

CVE-2021-3585

A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS1.6AI score0.00244EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2014/09/18 6:23 p.m.44 views

Low: Red Hat Security Advisory: Red Hat Storage 2.1 security, bug fix, and enhancement update

Updated glusterfs, geo-replication, and native client packages that fix one security issue, several bugs, and adds an enhancement are now available Red Hat Storage 2.1. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base...

4.3CVSS6.5AI score0.04857EPSS
Exploits0References8
NVD
NVD
added 2013/05/21 6:55 p.m.32 views

CVE-2012-6137

rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, which allows remote man-in-the-middle attackers to obtain sensitive information such as user credentials...

4.3CVSS5.9AI score0.0095EPSS
Exploits0References7
Prion
Prion
added 2013/05/21 6:55 p.m.30 views

Code injection

rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, which allows remote man-in-the-middle attackers to obtain sensitive information such as user credentials...

4.3CVSS6.4AI score0.0095EPSS
Exploits0References7Affected Software9
Rows per page
Query Builder