CVE-2019-3891HIGHCVSS 7.8vaffects Satellite 6.42019-04-15
CVE-2019-3891 [HIGH] CWE-532 CVE-2019-3891: It was discovered that a world-readable log file belonging to Candlepin component of Red Hat Satelli
It was discovered that a world-readable log file belonging to Candlepin component of Red Hat Satellite 6.4 leaked the credentials of the Candlepin database. A malicious user with local access to a Satellite host can use those credentials to modify the database and prevent Satellite from fetching package updates, thus preventing all Satellite hosts from
cvelistv5nvd