High severity7.5NVD Advisory· Published Jul 19, 2018· Updated Jun 17, 2026
CVE-2018-10869
CVE-2018-10869
Description
redhat-certification does not properly restrict files that can be download through the /download page. A remote attacker may download any file accessible by the user running httpd.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/105061nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2018:2373nvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingMitigationVendor Advisory
News mentions
0No linked articles in our index yet.