CVE-2019-3897

CVE-2019-3897

Vendor N/A
Product redhat-certification
Weakness CWE-552 · Files accessible externally
Published March 16, 2021
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

It has been discovered in redhat-certification that any unauthorized user may download any file under /var/www/rhcert, provided they know its name. Red Hat Certification 6 and 7 is vulnerable to this issue.

Key dates

02Disclosure timeline

March 16, 2021 CVE published
August 4, 2024 Record updated