Vulnerabilities > Pulpproject

DATE	CVE	VULNERABILITY TITLE	RISK
2017-06-08	CVE-2016-3108	Link Following vulnerability in Pulpproject Pulp The pulp-gen-nodes-certificate script in Pulp before 2.8.3 allows local users to leak the keys or write to arbitrary files via a symlink attack. local low complexity pulpproject CWE-59	7.1
2017-06-08	CVE-2016-3107	Improper Access Control vulnerability in Pulpproject Pulp The Node certificate in Pulp before 2.8.3 contains the private key, and is stored in a world-readable file in the "/etc/pki/pulp/nodes/" directory, which allows local users to gain access to sensitive data. local low complexity pulpproject CWE-284	5.5
2017-04-13	CVE-2016-3106	Race Condition vulnerability in Pulpproject Pulp 2.8.21 Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner. network low complexity pulpproject CWE-362	5.0
2017-04-03	CVE-2013-7450	Improper Certificate Validation vulnerability in Pulpproject Pulp 2.2.11 Pulp before 2.3.0 uses the same the same certificate authority key and certificate for all installations. network low complexity pulpproject CWE-295	5.0

Vulnerabilities > Pulpproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pulpproject"}]}