CVE-2020-10710

Published: Aug 16, 2022

Modified: Aug 4, 2024

PUBLISHED

Description

A flaw was found where the Plaintext Candlepin password is disclosed while updating Red Hat Satellite through the satellite-installer. This flaw allows an attacker with sufficiently high privileges, such as root, to retrieve the Candlepin plaintext password.

Vendor	Product	Versions
n/a	foreman-installer	affected `foreman-installer 1.24.1.22`

Weaknesses (CWE)

CWE-522

References

https://bugzilla.redhat.com/show_bug.cgi?id=1816747

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-10710

Description

Affected Products

Weaknesses (CWE)

References