CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

redhat

update_infrastructure

4 known vulnerabilities · sorted by CVSS score

CVE-2023-50781

HIGH7.5

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

redhat / enterprise_linux+3

Network

Published Feb 5, 2024

CVE-2023-50782

HIGH7.5

A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.

redhat / ansible_automation_platform+6

Network

Published Feb 5, 2024

CVE-2022-3644

MEDIUM5.5

The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp's encrypted field and exposes them in read/write mode via the API () instead of marking it as write only.

pulpproject / pulp_ansible+3

Local

Published Oct 25, 2022

CVE-2013-4518

MEDIUM5.5

RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates

redhat / update_infrastructure

Local

Published Nov 4, 2019