RHSA-2020:1454HighCVSS 7.3

Red Hat Security Advisory: Satellite 6.7 release.

Published
April 14, 2020
Last Modified
June 26, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2017-17718 — rubygem-net-ldap: Missing SSL Certificate Validation CVE-2019-0231 — mina-core: Retaining an open socket in close_notify SSL-TLS leading to Information disclosure. CVE-2019-10086 — apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default CVE-2019-12086 — jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. CVE-2020-10716 — rubygem-foreman_ansible: "User input" entry from Job Invocation may contain sensitive data

🔗 References (347)