CVE-2021-20256 - AskarLabs CVE Database

CVE-2021-20256

Vendor N/A

Product Red Hat Satellite

Weakness CWE-200 · Info exposure

Published February 23, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in Red Hat Satellite. The BMC interface exposes the password through the API to an authenticated local attacker with view_hosts permission. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Key dates

02Disclosure timeline

February 23, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-20256

Related vulnerabilities

04Related CVE

CVE-2023-42454 SQLpage vulnerable to public exposure of database credentials CVE-2026-11464 JeecgBoot User List Endpoint SysUserController.java queryPageList information disclosure CVE-2025-12525 Locker Content <= 1.0.0 - Unauthenticated Information Exposure CVE-2023-20062 Cisco Unified Intelligence Center Vulnerabilities CVE-2023-46288 Apache Airflow: Sensitive parameters exposed in API when "non-sensitive-only" configuration is set