Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2021-4142

Related Vulnerabilities: CVE-2021-4142  

The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.

Source

Description

The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.

Mitigation

Mitigation for this issue is not available because it doesn't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Additional Information

  • Bugzilla 2034346: CVE-2021-4142 Satellite: Allow unintended SCA certificate to authenticate Candlepin
  • CWE-639->CWE-287: Authorization Bypass Through User-Controlled Key leads to Improper Authentication
  • FAQ: Frequently asked questions about CVE-2021-4142

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started