VYPR

rpm package

almalinux/subscription-manager-plugin-ostree

pkg:rpm/almalinux/subscription-manager-plugin-ostree

Vulnerabilities (1)

  • CVE-2023-3899Aug 23, 2023
    affected < 1.28.36-3.el8_8.alma.1fixed 1.28.36-3.el8_8.alma.1

    A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the com.re