Lucene search
K

259 matches found

CVE
CVE
added 2023/08/23 10:49 a.m.557 views

CVE-2023-3899

CVE-2023-3899 affects subscription-manager. The vulnerability stems from the D-Bus interface com.redhat.RHSM1 exposing many methods to all users, allowing a low-privileged local user to tamper with registration state via Config.SetAll(). This enables arbitrary directives to /etc/rhsm/rhsm.conf, l...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2023/08/23 10:49 a.m.39 views

CVE-2023-3899 Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/08/23 12:0 a.m.34 views

AlmaLinux 9 : subscription-manager (ALSA-2023:4708)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:4708 advisory. - A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1...

7.8CVSS8AI score0.00253EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/08/22 4:35 p.m.6 views

subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.3AI score0.00253EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/08/22 4:35 p.m.50 views

Important: Red Hat Security Advisory: subscription-manager security update

An update for subscription-manager is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/08/22 4:8 p.m.3 views

subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.3AI score0.00253EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/08/22 4:8 p.m.86 views

Moderate: Red Hat Security Advisory: subscription-manager security update

An update for subscription-manager is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/08/22 4:6 p.m.2 views

subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.3AI score0.00253EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/08/22 4:6 p.m.33 views

Important: Red Hat Security Advisory: subscription-manager security update

An update for subscription-manager is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated thi...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/08/22 3:56 p.m.1 views

subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.3AI score0.00253EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/08/22 3:56 p.m.47 views

Important: Red Hat Security Advisory: subscription-manager security update

An update for subscription-manager is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as havin...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/08/22 3:45 p.m.4 views

subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.3AI score0.00253EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/08/22 3:45 p.m.104 views

Important: Red Hat Security Advisory: subscription-manager security update

An update for subscription-manager is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.8CVSS7.2AI score0.00253EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2023/08/22 2:21 p.m.109 views

CVE-2023-3899

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.5 views

Subscription-Manager 安全漏洞

Subscription-Manager is a subscription management system by the individual developer youranreus in China. Subscription-Manager has a security vulnerability that stems from the fact that the D-Bus interface com.redhat.RHSM1 exposes a large number of methods to all users that can change the...

7.8CVSS7.8AI score0.00253EPSS
Exploits0References23
OSV
OSV
added 2023/08/22 12:0 a.m.22 views

ALSA-2023:4706 Important: subscription-manager security update

The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the AlmaLinux entitlement platform. Security Fixes: subscription-manager: inadequate authorization of com.AlmaLinux.RHSM1 D-Bus interface allows local users to modify...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References4
OSV
OSV
added 2023/08/22 12:0 a.m.19 views

ALSA-2023:4708 Important: subscription-manager security update

The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the AlmaLinux entitlement platform. Security Fixes: subscription-manager: inadequate authorization of com.AlmaLinux.RHSM1 D-Bus interface allows local users to modify...

7.8CVSS7.7AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/08/22 12:0 a.m.54 views

RHEL 8 : subscription-manager (RHSA-2023:4706)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4706 advisory. The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Red Hat...

7.8CVSS8AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/08/22 12:0 a.m.25 views

RHEL 8 : subscription-manager (RHSA-2023:4703)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4703 advisory. The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Red Hat...

7.8CVSS8AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/08/22 12:0 a.m.36 views

RHEL 9 : subscription-manager (RHSA-2023:4707)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4707 advisory. The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Red Hat...

7.8CVSS8AI score0.00253EPSS
Exploits0References4
Rows per page
Query Builder