CVE-2013-7450

NONE EPSS 54.2%
Published Apr 3, 20179y ago · Modified Jun 17, 20262w ago
Find Similar
Published Apr 3, 2017 9y ago
Last Modified Jun 17, 2026 2w ago

Description

Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.

Threat Intelligence

EPSS Exploit Probability
54.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-295

Affected Products 1

VendorProductVersionRange
pulpprojectpulp* ≤2.2.1-1

References 6

  • openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/11
    Mailing ListThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/5
    Mailing ListPatchThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2016/05/20/1
    Mailing ListThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1003326
    Issue TrackingPatch
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1328345
    Issue TrackingPatch
  • github.com https://github.com/pulp/pulp/pull/627
    Issue TrackingPatchThird Party Advisory

Remediation

  • openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/5
    Mailing ListPatchThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1003326
    Issue TrackingPatch
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1328345
    Issue TrackingPatch
  • github.com https://github.com/pulp/pulp/pull/627
    Issue TrackingPatchThird Party Advisory