CVE-2020-14380
CVE-2020-14380
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
02 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the privileges of already existing local users of Satellite.
Affected products
n/a · Red Hat SatelliteWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →