Published: 17/02/2014 Updated: 19/02/2014

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

The sosreport utility in the Red Hat sos package prior to 1.7-9 and 2.x prior to 2.2-17 includes (1) Certificate-based Red Hat Network private entitlement keys and the (2) private key for the entitlement in an archive of debugging information, which might allow remote malicious users to obtain sensitive information by reading the archive.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat sos 2.2-16
redhat sos 2.2-9
redhat sos 2.2-11
redhat sos 2.2-15
redhat sos 2.2-3
redhat sos 2.2-6
redhat sos 2.2-7
redhat sos 2.2-8
redhat sos 2.2-10
redhat sos 2.2-14
redhat sos
redhat sos 1.7-8
redhat sos 1.7
redhat sos 1.6

Synopsis Low: sos security, bug fix, and enhancement update Type/Severity Security Advisory: Low Topic An updated sos package that fixes one security issue, several bugs, andadds various enhancements is now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as ...

Synopsis Low: sos security, bug fix, and enhancement update Type/Severity Security Advisory: Low Topic An updated sos package that fixes one security issue, several bugs, andadds various enhancements is now available for Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as ...

CWE-310 http://rhn.redhat.com/errata/RHSA-2012-0153.html http://rhn.redhat.com/errata/RHSA-2011-1536.html https://access.redhat.com/errata/RHSA-2011:1536 https://nvd.nist.gov

CVE-2011-4083

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect