← back
CVE-2020-14380

CVE-2020-14380

EPSS 0.8%CWE-287
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
02 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the privileges of already existing local users of Satellite.
Affected products
n/a · Red Hat Satellite

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →