Vulnerability Details : CVE-2016-4455
The Subscription Manager package (aka subscription-manager) before 1.17.7-1 for Candlepin uses weak permissions (755) for subscription-manager cache directories, which allows local users to obtain sensitive information by reading files in the directories.
Products affected by CVE-2016-4455
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:subscription-manager:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-4455
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 11 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-4455
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST | |
3.3
|
LOW | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
1.8
|
1.4
|
NIST |
CWE ids for CVE-2016-4455
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-4455
-
https://github.com/candlepin/subscription-manager/blob/subscription-manager-1.17.7-1/subscription-manager.spec
subscription-manager/subscription-manager.spec at subscription-manager-1.17.7-1 · candlepin/subscription-manager · GitHubThird Party Advisory
-
https://github.com/candlepin/subscription-manager/commit/9dec31
1297493, 1297485: Restrict visibility of subscription-manager caches. · candlepin/subscription-manager@9dec31c · GitHubPatch;Third Party Advisory
-
http://www.securitytracker.com/id/1038083
Red Hat Subscription Manager /var/lib/rhsm/ Permissions Let Local Users Obtain Potentially Sensitive Information on the Target System - SecurityTrackerThird Party Advisory;VDB Entry
-
https://bugzilla.redhat.com/show_bug.cgi?id=1340525
1340525 – (CVE-2016-4455) CVE-2016-4455 subscription-manager: sensitive world readable files in /var/lib/rhsm/Issue Tracking;Patch;Third Party Advisory;VDB Entry
-
http://rhn.redhat.com/errata/RHSA-2017-0698.html
RHSA-2017:0698 - Security Advisory - Red Hat Customer PortalThird Party Advisory;VDB Entry
-
http://rhn.redhat.com/errata/RHSA-2016-2592.html
RHSA-2016:2592 - Security Advisory - Red Hat Customer PortalThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/93926
Candlepin 'subscription-manager' CVE-2016-4455 Insecure File Permissions VulnerabilityThird Party Advisory;VDB Entry
-
http://www.openwall.com/lists/oss-security/2016/10/26/5
oss-security - CVE-2016-4455: subscription-manager: incorrect permisions in /var/lib/rhsm/Mailing List;Patch;Third Party Advisory
Jump to