Package impact
RubyGems / katello
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2012-3503 | critical | 9.8 | 9.8 | 4y ago | Katello uses hard coded credential | |||
| CVE-2016-3072 | high | 8.8 | 8.8 | 4y ago | Katello SQL Injection vulnerabilities | |||
| CVE-2026-4324 | medium | 5.4 | 5.4 | 3mo ago | Katello: Denial of Service and potential information disclosure via SQL injection | |||
| CVE-2019-14825 | unknown | — | — | 4y ago | Katello cleartext password storage issue | |||
| CVE-2018-16887 | unknown | — | — | 4y ago | katello Cross-site Scripting vulnerability | |||
| CVE-2018-14623 | unknown | — | — | 4y ago | katello SQL Injection vulnerability | |||
| CVE-2017-2662 | unknown | — | — | 4y ago | katello Improper Privilege Management vulnerability |