CVE-2013-7450
NONE EPSS 54.2%
Published Apr 3, 20179y ago · Modified Jun 17, 20262w ago
Published Apr 3, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations.
Threat Intelligence
EPSS Exploit Probability
54.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-295
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| pulpproject | pulp | * | ≤2.2.1-1 |
References 6
- openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/11
- openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/5
- openwall.com http://www.openwall.com/lists/oss-security/2016/05/20/1
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1003326
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1328345
- github.com https://github.com/pulp/pulp/pull/627
Remediation
- openwall.com http://www.openwall.com/lists/oss-security/2016/04/18/5
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1003326
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1328345
- github.com https://github.com/pulp/pulp/pull/627