Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The sosreport utility in the Red Hat sos package before 1.7-9 and 2.x before 2.2-17 includes (1) Certificate-based Red Hat Network private entitlement keys and the (2) private key for the entitlement in an archive of debugging information, which might allow remote attackers to obtain sensitive information by reading the archive.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat sos package 信息泄露漏洞
Vulnerability Description
Red Hat sos是美国红帽(Red Hat)公司的一套用于收集系统硬件、日志和配置文件信息的工具。 Red Hat sos package 1.7-6及之前的版本和2.2-17之前的2.x版本中存在安全漏洞,该漏洞源于sosreport工具的调试信息存档中包含Certificate-based Red Hat Network私有授权密钥和密钥。远程攻击者可通过读取存档利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A