Vulnerability: Disclosure of Plaintext Candlepin Password during Red Hat Satellite Update

CVE-2020-10710

A flaw was found where the Plaintext Candlepin password is disclosed while updating Red Hat Satellite through the satellite-installer. This flaw allows an attacker with sufficiently high privileges, such as root, to retrieve the Candlepin plaintext password.

Learn more about our Web Application Penetration Testing UK.