VDB

CVE-2020-14391

CVE-2020-14391 PUBLISHED

Reported by redhat · Published February 8, 2021

A flaw was found in the GNOME Control Center in Red Hat Enterprise Linux 8 versions prior to 8.2, where it improperly uses Red Hat Customer Portal credentials when a user registers a system through the GNOME Settings User Interface. This flaw allows a local attacker to discover the Red Hat Customer Portal password. The highest threat from this vulnerability is to confidentiality.

Affected Products

VendorProductVersions
n/agnome-settings-daemonRed Hat Enterprise Linux 8 versions prior to 8.2
n/agnome-settings-daemon*

Timeline

  • Feb 8, 2021 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score

References

  • x_refsource_MISC
Open in Interactive Console →
$ Console Community · 100/wk Open console ›