Published: 03/10/2023 Updated: 01/03/2024

CVSS v3 Base Score: 4.4 | Impact Score: 3.6 | Exploitability Score: 0.8

VMScore: 0

A sensitive information exposure vulnerability was found in foreman. Contents of tomcat's server.xml file, which contain passwords to candlepin's keystore and truststore, were found to be world readable.

Vulnerable Product	Search on Vulmon	Subscribe to Product
theforeman foreman
redhat satellite 6.0

概述 Moderate: Satellite 6141 Async Security Update 类型/严重性 Security Advisory: Moderate Red Hat Insights 补丁分析识别并修复受此公告影响的系统。查看受影响的系统标题 Updated Satellite 614 packages that fixes Important security bugs and severalregular bugs are now available for Red Hat Sate ...

DescriptionA sensitive information exposure vulnerability was found in foreman Contents of tomcat's serverxml file, which contain passwords to candlepin's keystore and truststore, were found to be world readableA sensitive information exposure vulnerability was found in foreman Contents of tomcat's serverxml file, which contain password ...

NVD-CWE-noinfo https://access.redhat.com/security/cve/CVE-2023-4886 https://bugzilla.redhat.com/show_bug.cgi?id=2230135 https://access.redhat.com/errata/RHSA-2023:7851 https://access.redhat.com/errata/RHSA-2024:1061 https://access.redhat.com/errata/RHSA-2023:7851 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2023-4886

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-4886

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect