Redhat Subscription-manager — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Subscription-manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2017-2663 — CVSS 8.2 (high): It was found that subscription-manager's DBus interface before 1.19.4 let unprivileged user access the com.redhat.RHSM1.Facts.GetFacts and…
CVE-2023-3899 — CVSS 7.8 (high): A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus…
CVE-2016-4455 — CVSS 3.3 (low): The Subscription Manager package (aka subscription-manager) before 1.17.7-1 for Candlepin uses weak permissions (755) for…