CVE-2020-10710
16.08.2022, 21:15
A flaw was found where the Plaintext Candlepin password is disclosed while updating Red Hat Satellite through the satellite-installer. This flaw allows an attacker with sufficiently high privileges, such as root, to retrieve the Candlepin plaintext password.Enginsight
Vendor | Product | Version |
---|---|---|
theforeman | foreman | 𝑥 < 1.24.1.22 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration