REDHAT-BUG-1858302
First published: Fri Jul 17 2020(Updated: )
Red Hat Satellite 6 allows local user of Smart-Proxy system to read OMAPI interface secret. Local user using the ISC DHCP server can read object mapping API (OMAPI) secret, as by default it listens on all interfaces for OMAPI interfaction.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Satellite |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-1858302?
The severity of REDHAT-BUG-1858302 is considered to be moderate.
How do I fix REDHAT-BUG-1858302?
To fix REDHAT-BUG-1858302, local user settings should be reviewed, and the OMAPI service should be configured to listen only on trusted interfaces.
Who is affected by REDHAT-BUG-1858302?
Red Hat Satellite 6 users with a local Smart-Proxy system utilizing ISC DHCP server are affected by REDHAT-BUG-1858302.
What is the impact of REDHAT-BUG-1858302?
The impact of REDHAT-BUG-1858302 is that a local user may gain unauthorized access to sensitive OMAPI interface secrets.
When was REDHAT-BUG-1858302 reported?
REDHAT-BUG-1858302 was reported on November 5, 2020.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-14335
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/red hat satellite