pkg:gem/katello
Type
gem
Name
katello
Known advisories, vulnerabilities and fixes for katello package.
- Repository
- https://rubygems.org/gems/katello
Critical
1
High
1
Medium
2
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 1.1.7 |
CVE-2012-3503
|
 RUBYSEC:KATELLO-2012-3503
|
Katello uses hard coded credential | critical |
2022-05-17T00:00:00
(2 years ago) |
|
| Fixed | = 1.0.6 >= 1.1.7 |
CVE-2012-3503
|
RUBYSEC:KATELLO-2012-3503
|
Katello uses hard coded credential | critical |
2022-05-17T00:00:00
(2 years ago) |
|
| Affected | < 2.4.3 |
CVE-2016-3072
|
RUBYSEC:KATELLO-2016-3072
|
Katello SQL Injection vulnerabilities | high |
2022-05-14T00:00:00
(2 years ago) |
|
| Fixed | >= 2.4.3 |
CVE-2016-3072
|
RUBYSEC:KATELLO-2016-3072
|
Katello SQL Injection vulnerabilities | high |
2022-05-14T00:00:00
(2 years ago) |
|
| Affected | < 3.17.0.rc1 |
CVE-2017-2662
|
RUBYSEC:KATELLO-2017-2662
|
katello Improper Privilege Management vulnerability | medium |
2022-05-13T00:00:00
(2 years ago) |
|
| Fixed | >= 3.17.0.rc1 |
CVE-2017-2662
|
RUBYSEC:KATELLO-2017-2662
|
katello Improper Privilege Management vulnerability | medium |
2022-05-13T00:00:00
(2 years ago) |
|
| Affected | < 3.9.0 |
CVE-2018-16887
|
RUBYSEC:KATELLO-2018-16887
|
katello Cross-site Scripting vulnerability | medium |
2022-05-14T00:00:00
(2 years ago) |
|
| Fixed | >= 3.9.0 |
CVE-2018-16887
|
RUBYSEC:KATELLO-2018-16887
|
katello Cross-site Scripting vulnerability | medium |
2022-05-14T00:00:00
(2 years ago) |
|
| Affected | < 3.12.2 |
CVE-2019-14825
|
RUBYSEC:KATELLO-2019-14825
|
Katello cleartext password storage issue | low |
2022-05-24T00:00:00
(2 years ago) |
|
| Fixed | >= 3.12.2 |
CVE-2019-14825
|
RUBYSEC:KATELLO-2019-14825
|
Katello cleartext password storage issue | low |
2022-05-24T00:00:00
(2 years ago) |