Convert2rhel Project Convert2rhel — known CVE vulnerabilities
Every CVE whose affected-product data names Convert2rhel Project Convert2rhel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-0851 — CVSS 5.5 (medium): There is a flaw in convert2rhel. When the --activationkey option is used with convert2rhel, the activation key is subsequently passed to…
CVE-2022-0852 — CVSS 5.5 (medium): There is a flaw in convert2rhel. convert2rhel passes the Red Hat account password to subscription-manager via the command line, which could…
CVE-2022-1662 — CVSS 5.5 (medium): In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password…