|
210771
|
7.5 |
HIGH
Network
|
redhat
|
satellite
|
An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the pri…
|
-
|
CVE-2020-14380
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210772
|
6.5 |
MEDIUM
Network
|
redhat
|
satellite
|
A credential leak vulnerability was found in Red Hat Satellite. This flaw exposes the compute resources credentials through VMs that are running on these resources in Satellite.
|
-
|
CVE-2020-14371
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210773
|
5.9 |
MEDIUM
Network
|
redhat
oracle
|
xnio
jboss_operations_network
jboss_enterprise_application_platform
jboss_fuse
jboss_data_grid
jboss_brms
jboss_soa_platform
jboss_data_virtualization
communications_cloud_nat…
|
A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial…
|
NVD-CWE-Other
|
CVE-2020-14340
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210774
|
6.5 |
MEDIUM
Network
|
redhat
|
openshift_container_platform
|
A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an Ope…
|
-
|
CVE-2020-14336
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210775
|
5.5 |
MEDIUM
Local
|
redhat
|
satellite
|
A flaw was found in Red Hat Satellite, which allows a privileged attacker to read OMAPI secrets through the ISC DHCP of Smart-Proxy. This flaw allows an attacker to gain control of DHCP records from …
|
-
|
CVE-2020-14335
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210776
|
7.5 |
HIGH
Network
|
redhat
netapp
|
integration_camel_k
resteasy
oncommand_insight
|
A vulnerability was found in RESTEasy, where RootNode incorrectly caches routes. This issue results in hash flooding, leading to slower requests with higher CPU time spent searching and adding the en…
|
NVD-CWE-Other
|
CVE-2020-14326
|
2024-11-21 14:03 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210777
|
7.4 |
HIGH
Network
|
samba
|
rsync
|
A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing…
|
-
|
CVE-2020-14387
|
2024-11-21 14:03 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210778
|
3.3 |
LOW
Local
|
redhat
|
ansible_tower
|
A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint. This flaw allows users from other organizations in the…
|
-
|
CVE-2020-14329
|
2024-11-21 14:03 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210779
|
3.3 |
LOW
Local
|
redhat
|
ansible_tower
|
A flaw was found in Ansible Tower in versions before 3.7.2. A Server Side Request Forgery flaw can be abused by supplying a URL which could lead to the server processing it connecting to internal ser…
|
-
|
CVE-2020-14328
|
2024-11-21 14:03 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210780
|
5.5 |
MEDIUM
Local
|
redhat
|
ansible_tower
|
A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower server is abused by supplying a URL that could lead to the s…
|
-
|
CVE-2020-14327
|
2024-11-21 14:03 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
