Filtered by vendor Katello Subscriptions
Filtered by product Katello-configure Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2012-6116 3 Cloudforms Systemengine, Katello, Rhel Sam 4 1, Katello, Katello-configure and 1 more 2024-08-06 N/A
modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak permissions (666) for the Candlepin bootstrap RPM, which allows local users to modify the Candlepin CA certificate by writing to this file.