Vulnerabilities > CVE-2021-3414 - Improper Preservation of Permissions vulnerability in Redhat Satellite 6.7

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

redhat

CWE-281

NVD

Published: 2022-08-26

Updated: 2022-09-01

Summary

A flaw was found in satellite. When giving granular permission related to the organization, other permissions allowing a user to view and manage other organizations are also granted. The highest threat from this vulnerability is to data confidentiality.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Satellite 6.7	1

Common Weakness Enumeration (CWE)

CWE-281 - Improper Preservation of Permissions

References

https://bugzilla.redhat.com/show_bug.cgi?id=1926139
https://access.redhat.com/security/cve/CVE-2021-3414