CVE-2018-10865 is a vulnerability in Red Hat Certification
Published on May 26, 2021

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to call a "restart" RPC method on any host accessible by the system, even if not belonging to him.

NVD

Weakness Type

What is an AuthZ Vulnerability?

The software does not perform an authorization check when an actor attempts to access a resource or perform an action.

CVE-2018-10865 has been classified to as an AuthZ vulnerability or weakness.

Products Associated with CVE-2018-10865

Want to know whenever a new CVE is published for Red Hat Certification? stack.watch will email you.

Red Hat Certification

Exploit Probability

EPSS

0.98%

Percentile

76.58%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-10865 is a vulnerability in Red Hat CertificationPublished on May 26, 2021

Weakness Type

What is an AuthZ Vulnerability?

Products Associated with CVE-2018-10865

Exploit Probability

CVE-2018-10865 is a vulnerability in Red Hat Certification
Published on May 26, 2021