7.5

CVE-2010-4179

EPSS 0.49%
Published 07.12.2010 22:00:02
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid (MRG) 1.3 recommends that Condor should be configured so that the MRG Management Console (cumin) can submit jobs for users, which creates a trusted channel with insufficient access control that allows local users with the ability to publish to a broker to run jobs as arbitrary users via Condor QMF plug-ins.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Redhat ≫ Enterprise Mrg Version1.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.49%	0.626

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/42406

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0921.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0922.html

Vendor Advisory

http://www.securitytracker.com/id?1024806

http://www.vupen.com/english/advisories/2010/3091

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=654856

https://nvd.nist.gov/vuln/detail/CVE-2010-4179

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-4179

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-4179

EUVD