CVE-2013-4455
Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by reading the file.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0004 (0.0%)
Percentil: 13.0%
EPSS: 2026-05-06
Afecta
katello:katello_installerDescripción técnica
Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain the private key by reading the file.
Publicada: 14/5/2014, 19:55:09
Última modificación: 6/5/2026, 22:30:45