VDB

CVE-2020-14380

CVE-2020-14380 PUBLISHED CVSS 6 MEDIUM

An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the privileges of already existing local users of Satellite.

EPSS 0.32% · 55.3th percentile

Risk Scores

CVSS 2.0
6
EPSS Score
0.32%
55.3th percentile

Affected Products

VendorProductVersions
redhatsatellite6.7.2
n/aRed Hat SatelliteRed Hat Satellite 6.8

Timeline

  • Jun 2, 2021 CVE Published
  • Jun 3, 2021 EPSS Score
  • Jun 19, 2021 EPSS Score
  • Jun 24, 2021 EPSS Score
  • Oct 5, 2021 EPSS Score
  • Dec 5, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 6, 2022 EPSS Score
  • Aug 7, 2022 EPSS Score
  • Oct 7, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›