VYPR

Satellite

by Satellite

CVEs (1)

  • CVE-2024-4871MedMay 14, 2024
    risk 0.44cvss 6.8epss 0.01

    A vulnerability was found in Satellite. When running a remote execution job on a host, the host's SSH key is not being checked. When the key changes, the Satellite still connects it because it uses "-o StrictHostKeyChecking=no". This flaw can lead to a man-in-the-middle attack…