High severity8.2NVD Advisory· Published Jul 27, 2018· Updated Jun 17, 2026
CVE-2017-2663
CVE-2017-2663
Description
It was found that subscription-manager's DBus interface before 1.19.4 let unprivileged user access the com.redhat.RHSM1.Facts.GetFacts and com.redhat.RHSM1.Config.Set methods. An unprivileged local attacker could use these methods to gain access to private information, or launch a privilege escalation attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 1.19.4
Patches
Vulnerability mechanics
References
3- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- github.com/candlepin/subscription-manager/commit/2aa48ef65nvdPatchThird Party Advisory
- www.securityfocus.com/bid/97015nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.