Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : fwupd-1.8.10-2.el9.ML.1 (AXSA:2023-5696:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5696:02 advisory. fwupd: world readable password in /etc/fwupd/redfish.conf CVE-2022-3287 shim: 3rd party shim allow secure boot bypass CVE-2022-34301 shim: 3rd party...

6.7CVSS8.6AI score0.01037EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/03/19 5:41 p.m.12 views

fwupd: world readable password in /etc/fwupd/redfish.conf

A flaw was found in fwupd. When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated password to /etc/fwupd/redfish.conf without proper restriction, allowing any user on the system to read the same configuration file...

6.5CVSS5.8AI score0.00619EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/03/05 4:30 p.m.5 views

fwupd: world readable password in /etc/fwupd/redfish.conf

A flaw was found in fwupd. When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated password to /etc/fwupd/redfish.conf without proper restriction, allowing any user on the system to read the same configuration file...

6.5CVSS5.8AI score0.00619EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/14 3:39 p.m.8 views

fwupd: world readable password in /etc/fwupd/redfish.conf

A flaw was found in fwupd. When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated password to /etc/fwupd/redfish.conf without proper restriction, allowing any user on the system to read the same configuration file...

6.5CVSS5.8AI score0.00619EPSS
Exploits0References4
Rows per page
Query Builder