Update Infrastructure Security Vulnerabilities and Issues — Update Infrastructure CVE List

Lucene search

RedhatUpdate Infrastructure

4 matches found

CVE•added 2024/02/05 9:15 p.m.•394 views

CVE-2023-50782

A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

7.5CVSS7.2AI score0.00726EPSS

CVE•added 2024/02/05 9:15 p.m.•179 views

CVE-2023-50781

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

7.5CVSS7.2AI score0.00544EPSS

CVE•added 2022/10/25 6:15 p.m.•145 views

CVE-2022-3644

The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp's encrypted field and exposes them in read/write mode via the API () instead of marking it as write only.

5.5CVSS5.8AI score0.00032EPSS

CVE•added 2019/11/04 1:15 p.m.•34 views

CVE-2013-4518

RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates

5.5CVSS5.6AI score0.00078EPSS