High severity7.1NVD Advisory· Published Jun 8, 2017· Updated May 13, 2026
CVE-2016-3108
CVE-2016-3108
Description
The pulp-gen-nodes-certificate script in Pulp before 2.8.3 allows local users to leak the keys or write to arbitrary files via a symlink attack.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- github.com/pulp/pulp/pull/2528nvdIssue TrackingPatchThird Party Advisory
- pulp.plan.io/issues/1830nvdPatchVendor Advisory
- www.openwall.com/lists/oss-security/2016/05/20/1nvdMailing ListThird Party Advisory
- bugzilla.redhat.com/attachment.cginvdIssue Tracking
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- access.redhat.com/errata/RHBA-2016:1501nvd
News mentions
0No linked articles in our index yet.