Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Update_infrastructure
(Redhat)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-02-05 | CVE-2023-50782 | A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data. | Couchbase_server, Cryptography, Ansible_automation_platform, Enterprise_linux, Update_infrastructure | 7.5 | ||
| 2024-02-05 | CVE-2023-50781 | A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data. | M2crypto, Enterprise_linux, Update_infrastructure | 7.5 | ||
| 2022-10-25 | CVE-2022-3644 | The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp's encrypted field and exposes them in read/write mode via the API () instead of marking it as write only. | Pulp_ansible, Ansible_automation_platform, Satellite, Update_infrastructure | 5.5 | ||
| 2019-11-04 | CVE-2013-4518 | RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates | Update_infrastructure | N/A |