CVE-2018-10867

CVE-2018-10867

Vendor N/A
Product redhat-certification
Weakness CWE-552 · Files accessible externally
Published May 26, 2021
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Files are accessible without restrictions from the /update/results page of redhat-certification 7 package, allowing an attacker to remove any file accessible by the apached user.

Key dates

02Disclosure timeline

May 26, 2021 CVE published
August 5, 2024 Record updated