CVE-2016-4457

EUVD-2016-5446
CloudForms Management Engine before 5.8 includes a default SSL/TLS certificate.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Affected Products (NVD)
VendorProductVersion
redhatcloudforms_management_engine
5.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1038599
https://access.redhat.com/errata/RHSA-2017:1367
https://access.redhat.com/errata/RHSA-2017:1601
https://bugzilla.redhat.com/show_bug.cgi?id=1341308
http://www.securitytracker.com/id/1038599
https://access.redhat.com/errata/RHSA-2017:1367
https://access.redhat.com/errata/RHSA-2017:1601
https://bugzilla.redhat.com/show_bug.cgi?id=1341308