Vulnerability Details CVE-2016-4455
The Subscription Manager package (aka subscription-manager) before 1.17.7-1 for Candlepin uses weak permissions (755) for subscription-manager cache directories, which allows local users to obtain sensitive information by reading files in the directories.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.7%
CVSS Severity
CVSS v3 Score 3.3
CVSS v2 Score 2.1
References
- http://rhn.redhat.com/errata/RHSA-2016-2592.html
- http://rhn.redhat.com/errata/RHSA-2017-0698.html
- http://www.openwall.com/lists/oss-security/2016/10/26/5
- http://www.securityfocus.com/bid/93926
- http://www.securitytracker.com/id/1038083
- https://bugzilla.redhat.com/show_bug.cgi?id=1340525
- https://github.com/candlepin/subscription-manager/blob/subscription-manager-1.17.7-1/subscription-manager.spec
- https://github.com/candlepin/subscription-manager/commit/9dec31
- http://rhn.redhat.com/errata/RHSA-2016-2592.html
- http://rhn.redhat.com/errata/RHSA-2017-0698.html
- http://www.openwall.com/lists/oss-security/2016/10/26/5
- http://www.securityfocus.com/bid/93926
- http://www.securitytracker.com/id/1038083
- https://bugzilla.redhat.com/show_bug.cgi?id=1340525
- https://github.com/candlepin/subscription-manager/blob/subscription-manager-1.17.7-1/subscription-manager.spec
- https://github.com/candlepin/subscription-manager/commit/9dec31
Products affected by CVE-2016-4455
-
cpe:2.3:a:redhat:subscription-manager:0.92.1
-
cpe:2.3:a:redhat:subscription-manager:0.92.2
-
cpe:2.3:a:redhat:subscription-manager:0.92.4
-
cpe:2.3:a:redhat:subscription-manager:0.92.5
-
cpe:2.3:a:redhat:subscription-manager:0.92.6
-
cpe:2.3:a:redhat:subscription-manager:0.92.7
-
cpe:2.3:a:redhat:subscription-manager:0.92.8
-
cpe:2.3:a:redhat:subscription-manager:0.92.9
-
cpe:2.3:a:redhat:subscription-manager:0.93.12
-
cpe:2.3:a:redhat:subscription-manager:0.93.13
-
cpe:2.3:a:redhat:subscription-manager:0.93.14
-
cpe:2.3:a:redhat:subscription-manager:0.93.15
-
cpe:2.3:a:redhat:subscription-manager:0.93.16
-
cpe:2.3:a:redhat:subscription-manager:0.93.17
-
cpe:2.3:a:redhat:subscription-manager:0.93.18
-
cpe:2.3:a:redhat:subscription-manager:0.93.19
-
cpe:2.3:a:redhat:subscription-manager:0.95.1
-
cpe:2.3:a:redhat:subscription-manager:0.95.10
-
cpe:2.3:a:redhat:subscription-manager:0.95.11
-
cpe:2.3:a:redhat:subscription-manager:0.95.13
-
cpe:2.3:a:redhat:subscription-manager:0.95.14
-
cpe:2.3:a:redhat:subscription-manager:0.95.17
-
cpe:2.3:a:redhat:subscription-manager:0.95.2
-
cpe:2.3:a:redhat:subscription-manager:0.95.3
-
cpe:2.3:a:redhat:subscription-manager:0.95.4
-
cpe:2.3:a:redhat:subscription-manager:0.95.5
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.10
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.11
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.12
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.13
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.14
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.15
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.16
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.17
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.18
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.19
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.2
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.20
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.21
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.3
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.4
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.5
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.6
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.7
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.8
-
cpe:2.3:a:redhat:subscription-manager:0.95.5.9
-
cpe:2.3:a:redhat:subscription-manager:0.95.6
-
cpe:2.3:a:redhat:subscription-manager:0.95.7
-
cpe:2.3:a:redhat:subscription-manager:0.95.8
-
cpe:2.3:a:redhat:subscription-manager:0.95.9
-
cpe:2.3:a:redhat:subscription-manager:0.96.10
-
cpe:2.3:a:redhat:subscription-manager:0.96.11
-
cpe:2.3:a:redhat:subscription-manager:0.96.12
-
cpe:2.3:a:redhat:subscription-manager:0.96.13
-
cpe:2.3:a:redhat:subscription-manager:0.96.14
-
cpe:2.3:a:redhat:subscription-manager:0.96.15
-
cpe:2.3:a:redhat:subscription-manager:0.96.16
-
cpe:2.3:a:redhat:subscription-manager:0.96.17
-
cpe:2.3:a:redhat:subscription-manager:0.96.17.2
-
cpe:2.3:a:redhat:subscription-manager:0.96.18
-
cpe:2.3:a:redhat:subscription-manager:0.96.2
-
cpe:2.3:a:redhat:subscription-manager:0.96.3
-
cpe:2.3:a:redhat:subscription-manager:0.96.4
-
cpe:2.3:a:redhat:subscription-manager:0.96.5
-
cpe:2.3:a:redhat:subscription-manager:0.96.6
-
cpe:2.3:a:redhat:subscription-manager:0.96.7
-
cpe:2.3:a:redhat:subscription-manager:0.96.8
-
cpe:2.3:a:redhat:subscription-manager:0.96.9
-
cpe:2.3:a:redhat:subscription-manager:0.97.1
-
cpe:2.3:a:redhat:subscription-manager:0.97.2
-
cpe:2.3:a:redhat:subscription-manager:0.97.3
-
cpe:2.3:a:redhat:subscription-manager:0.98.10
-
cpe:2.3:a:redhat:subscription-manager:0.98.11
-
cpe:2.3:a:redhat:subscription-manager:0.98.12
-
cpe:2.3:a:redhat:subscription-manager:0.98.13
-
cpe:2.3:a:redhat:subscription-manager:0.98.14
-
cpe:2.3:a:redhat:subscription-manager:0.98.15
-
cpe:2.3:a:redhat:subscription-manager:0.98.16
-
cpe:2.3:a:redhat:subscription-manager:0.98.16.2
-
cpe:2.3:a:redhat:subscription-manager:0.98.16.3
-
cpe:2.3:a:redhat:subscription-manager:0.98.2
-
cpe:2.3:a:redhat:subscription-manager:0.98.3
-
cpe:2.3:a:redhat:subscription-manager:0.98.4
-
cpe:2.3:a:redhat:subscription-manager:0.98.5
-
cpe:2.3:a:redhat:subscription-manager:0.98.6
-
cpe:2.3:a:redhat:subscription-manager:0.98.7
-
cpe:2.3:a:redhat:subscription-manager:0.98.8
-
cpe:2.3:a:redhat:subscription-manager:0.98.9
-
cpe:2.3:a:redhat:subscription-manager:0.99.10
-
cpe:2.3:a:redhat:subscription-manager:0.99.11
-
cpe:2.3:a:redhat:subscription-manager:0.99.12
-
cpe:2.3:a:redhat:subscription-manager:0.99.13
-
cpe:2.3:a:redhat:subscription-manager:0.99.14
-
cpe:2.3:a:redhat:subscription-manager:0.99.15
-
cpe:2.3:a:redhat:subscription-manager:0.99.16
-
cpe:2.3:a:redhat:subscription-manager:0.99.17
-
cpe:2.3:a:redhat:subscription-manager:0.99.18
-
cpe:2.3:a:redhat:subscription-manager:0.99.19
-
cpe:2.3:a:redhat:subscription-manager:0.99.19.1
-
cpe:2.3:a:redhat:subscription-manager:0.99.19.2
-
cpe:2.3:a:redhat:subscription-manager:0.99.19.3
-
cpe:2.3:a:redhat:subscription-manager:0.99.19.4
-
cpe:2.3:a:redhat:subscription-manager:0.99.2
-
cpe:2.3:a:redhat:subscription-manager:0.99.3
-
cpe:2.3:a:redhat:subscription-manager:0.99.4
-
cpe:2.3:a:redhat:subscription-manager:0.99.5
-
cpe:2.3:a:redhat:subscription-manager:0.99.6
-
cpe:2.3:a:redhat:subscription-manager:0.99.7
-
cpe:2.3:a:redhat:subscription-manager:0.99.8
-
cpe:2.3:a:redhat:subscription-manager:0.99.9
-
cpe:2.3:a:redhat:subscription-manager:1.0.1
-
cpe:2.3:a:redhat:subscription-manager:1.0.10
-
cpe:2.3:a:redhat:subscription-manager:1.0.11
-
cpe:2.3:a:redhat:subscription-manager:1.0.12
-
cpe:2.3:a:redhat:subscription-manager:1.0.13
-
cpe:2.3:a:redhat:subscription-manager:1.0.14
-
cpe:2.3:a:redhat:subscription-manager:1.0.15
-
cpe:2.3:a:redhat:subscription-manager:1.0.16
-
cpe:2.3:a:redhat:subscription-manager:1.0.17
-
cpe:2.3:a:redhat:subscription-manager:1.0.18
-
cpe:2.3:a:redhat:subscription-manager:1.0.19
-
cpe:2.3:a:redhat:subscription-manager:1.0.2
-
cpe:2.3:a:redhat:subscription-manager:1.0.20
-
cpe:2.3:a:redhat:subscription-manager:1.0.21
-
cpe:2.3:a:redhat:subscription-manager:1.0.22
-
cpe:2.3:a:redhat:subscription-manager:1.0.23
-
cpe:2.3:a:redhat:subscription-manager:1.0.24
-
cpe:2.3:a:redhat:subscription-manager:1.0.24.1
-
cpe:2.3:a:redhat:subscription-manager:1.0.3
-
cpe:2.3:a:redhat:subscription-manager:1.0.4
-
cpe:2.3:a:redhat:subscription-manager:1.0.5
-
cpe:2.3:a:redhat:subscription-manager:1.0.6
-
cpe:2.3:a:redhat:subscription-manager:1.0.7
-
cpe:2.3:a:redhat:subscription-manager:1.0.8
-
cpe:2.3:a:redhat:subscription-manager:1.0.9
-
cpe:2.3:a:redhat:subscription-manager:1.1.1
-
cpe:2.3:a:redhat:subscription-manager:1.1.10
-
cpe:2.3:a:redhat:subscription-manager:1.1.11
-
cpe:2.3:a:redhat:subscription-manager:1.1.12
-
cpe:2.3:a:redhat:subscription-manager:1.1.13
-
cpe:2.3:a:redhat:subscription-manager:1.1.14
-
cpe:2.3:a:redhat:subscription-manager:1.1.15
-
cpe:2.3:a:redhat:subscription-manager:1.1.16
-
cpe:2.3:a:redhat:subscription-manager:1.1.17
-
cpe:2.3:a:redhat:subscription-manager:1.1.18
-
cpe:2.3:a:redhat:subscription-manager:1.1.19
-
cpe:2.3:a:redhat:subscription-manager:1.1.2
-
cpe:2.3:a:redhat:subscription-manager:1.1.20
-
cpe:2.3:a:redhat:subscription-manager:1.1.21
-
cpe:2.3:a:redhat:subscription-manager:1.1.22
-
cpe:2.3:a:redhat:subscription-manager:1.1.23
-
cpe:2.3:a:redhat:subscription-manager:1.1.23.1
-
cpe:2.3:a:redhat:subscription-manager:1.1.3
-
cpe:2.3:a:redhat:subscription-manager:1.1.4
-
cpe:2.3:a:redhat:subscription-manager:1.1.5
-
cpe:2.3:a:redhat:subscription-manager:1.1.6
-
cpe:2.3:a:redhat:subscription-manager:1.1.7
-
cpe:2.3:a:redhat:subscription-manager:1.1.8
-
cpe:2.3:a:redhat:subscription-manager:1.1.9
-
cpe:2.3:a:redhat:subscription-manager:1.10.1
-
cpe:2.3:a:redhat:subscription-manager:1.10.10
-
cpe:2.3:a:redhat:subscription-manager:1.10.11
-
cpe:2.3:a:redhat:subscription-manager:1.10.12
-
cpe:2.3:a:redhat:subscription-manager:1.10.13
-
cpe:2.3:a:redhat:subscription-manager:1.10.14
-
cpe:2.3:a:redhat:subscription-manager:1.10.140
-
cpe:2.3:a:redhat:subscription-manager:1.10.141
-
cpe:2.3:a:redhat:subscription-manager:1.10.142
-
cpe:2.3:a:redhat:subscription-manager:1.10.143
-
cpe:2.3:a:redhat:subscription-manager:1.10.2
-
cpe:2.3:a:redhat:subscription-manager:1.10.3
-
cpe:2.3:a:redhat:subscription-manager:1.10.4
-
cpe:2.3:a:redhat:subscription-manager:1.10.5
-
cpe:2.3:a:redhat:subscription-manager:1.10.6
-
cpe:2.3:a:redhat:subscription-manager:1.10.7
-
cpe:2.3:a:redhat:subscription-manager:1.10.8
-
cpe:2.3:a:redhat:subscription-manager:1.10.9
-
cpe:2.3:a:redhat:subscription-manager:1.11.1
-
cpe:2.3:a:redhat:subscription-manager:1.11.2
-
cpe:2.3:a:redhat:subscription-manager:1.11.3
-
cpe:2.3:a:redhat:subscription-manager:1.11.30
-
cpe:2.3:a:redhat:subscription-manager:1.11.31
-
cpe:2.3:a:redhat:subscription-manager:1.11.32
-
cpe:2.3:a:redhat:subscription-manager:1.11.33
-
cpe:2.3:a:redhat:subscription-manager:1.11.34
-
cpe:2.3:a:redhat:subscription-manager:1.11.4
-
cpe:2.3:a:redhat:subscription-manager:1.11.5
-
cpe:2.3:a:redhat:subscription-manager:1.11.6
-
cpe:2.3:a:redhat:subscription-manager:1.11.7
-
cpe:2.3:a:redhat:subscription-manager:1.12.1
-
cpe:2.3:a:redhat:subscription-manager:1.12.10
-
cpe:2.3:a:redhat:subscription-manager:1.12.11
-
cpe:2.3:a:redhat:subscription-manager:1.12.12
-
cpe:2.3:a:redhat:subscription-manager:1.12.13
-
cpe:2.3:a:redhat:subscription-manager:1.12.14
-
cpe:2.3:a:redhat:subscription-manager:1.12.2
-
cpe:2.3:a:redhat:subscription-manager:1.12.3
-
cpe:2.3:a:redhat:subscription-manager:1.12.4
-
cpe:2.3:a:redhat:subscription-manager:1.12.5
-
cpe:2.3:a:redhat:subscription-manager:1.12.6
-
cpe:2.3:a:redhat:subscription-manager:1.12.7
-
cpe:2.3:a:redhat:subscription-manager:1.12.8
-
cpe:2.3:a:redhat:subscription-manager:1.12.9
-
cpe:2.3:a:redhat:subscription-manager:1.13.1
-
cpe:2.3:a:redhat:subscription-manager:1.13.10
-
cpe:2.3:a:redhat:subscription-manager:1.13.11
-
cpe:2.3:a:redhat:subscription-manager:1.13.12
-
cpe:2.3:a:redhat:subscription-manager:1.13.13
-
cpe:2.3:a:redhat:subscription-manager:1.13.14
-
cpe:2.3:a:redhat:subscription-manager:1.13.15
-
cpe:2.3:a:redhat:subscription-manager:1.13.16
-
cpe:2.3:a:redhat:subscription-manager:1.13.17
-
cpe:2.3:a:redhat:subscription-manager:1.13.18
-
cpe:2.3:a:redhat:subscription-manager:1.13.19
-
cpe:2.3:a:redhat:subscription-manager:1.13.2
-
cpe:2.3:a:redhat:subscription-manager:1.13.20
-
cpe:2.3:a:redhat:subscription-manager:1.13.21
-
cpe:2.3:a:redhat:subscription-manager:1.13.22
-
cpe:2.3:a:redhat:subscription-manager:1.13.3
-
cpe:2.3:a:redhat:subscription-manager:1.13.4
-
cpe:2.3:a:redhat:subscription-manager:1.13.5
-
cpe:2.3:a:redhat:subscription-manager:1.13.6
-
cpe:2.3:a:redhat:subscription-manager:1.13.7
-
cpe:2.3:a:redhat:subscription-manager:1.13.8
-
cpe:2.3:a:redhat:subscription-manager:1.13.9
-
cpe:2.3:a:redhat:subscription-manager:1.14.1
-
cpe:2.3:a:redhat:subscription-manager:1.14.10
-
cpe:2.3:a:redhat:subscription-manager:1.14.2
-
cpe:2.3:a:redhat:subscription-manager:1.14.3
-
cpe:2.3:a:redhat:subscription-manager:1.14.4
-
cpe:2.3:a:redhat:subscription-manager:1.14.5
-
cpe:2.3:a:redhat:subscription-manager:1.14.6
-
cpe:2.3:a:redhat:subscription-manager:1.14.7
-
cpe:2.3:a:redhat:subscription-manager:1.14.8
-
cpe:2.3:a:redhat:subscription-manager:1.14.9
-
cpe:2.3:a:redhat:subscription-manager:1.15.1
-
cpe:2.3:a:redhat:subscription-manager:1.15.2
-
cpe:2.3:a:redhat:subscription-manager:1.15.3
-
cpe:2.3:a:redhat:subscription-manager:1.15.4
-
cpe:2.3:a:redhat:subscription-manager:1.15.5
-
cpe:2.3:a:redhat:subscription-manager:1.15.6
-
cpe:2.3:a:redhat:subscription-manager:1.15.7
-
cpe:2.3:a:redhat:subscription-manager:1.15.8
-
cpe:2.3:a:redhat:subscription-manager:1.15.9
-
cpe:2.3:a:redhat:subscription-manager:1.15.90
-
cpe:2.3:a:redhat:subscription-manager:1.15.91
-
cpe:2.3:a:redhat:subscription-manager:1.15.92
-
cpe:2.3:a:redhat:subscription-manager:1.15.93
-
cpe:2.3:a:redhat:subscription-manager:1.15.94
-
cpe:2.3:a:redhat:subscription-manager:1.15.95
-
cpe:2.3:a:redhat:subscription-manager:1.16.0
-
cpe:2.3:a:redhat:subscription-manager:1.16.1
-
cpe:2.3:a:redhat:subscription-manager:1.16.2
-
cpe:2.3:a:redhat:subscription-manager:1.16.3
-
cpe:2.3:a:redhat:subscription-manager:1.16.4
-
cpe:2.3:a:redhat:subscription-manager:1.16.5
-
cpe:2.3:a:redhat:subscription-manager:1.16.6
-
cpe:2.3:a:redhat:subscription-manager:1.16.7
-
cpe:2.3:a:redhat:subscription-manager:1.16.8
-
cpe:2.3:a:redhat:subscription-manager:1.17.1
-
cpe:2.3:a:redhat:subscription-manager:1.17.2
-
cpe:2.3:a:redhat:subscription-manager:1.17.3
-
cpe:2.3:a:redhat:subscription-manager:1.17.4
-
cpe:2.3:a:redhat:subscription-manager:1.17.5
-
cpe:2.3:a:redhat:subscription-manager:1.17.6
-
cpe:2.3:a:redhat:subscription-manager:1.17.6-1
-
cpe:2.3:a:redhat:subscription-manager:1.8.0
-
cpe:2.3:a:redhat:subscription-manager:1.8.1
-
cpe:2.3:a:redhat:subscription-manager:1.8.10
-
cpe:2.3:a:redhat:subscription-manager:1.8.11
-
cpe:2.3:a:redhat:subscription-manager:1.8.12
-
cpe:2.3:a:redhat:subscription-manager:1.8.13
-
cpe:2.3:a:redhat:subscription-manager:1.8.14
-
cpe:2.3:a:redhat:subscription-manager:1.8.15
-
cpe:2.3:a:redhat:subscription-manager:1.8.16
-
cpe:2.3:a:redhat:subscription-manager:1.8.17
-
cpe:2.3:a:redhat:subscription-manager:1.8.18
-
cpe:2.3:a:redhat:subscription-manager:1.8.19
-
cpe:2.3:a:redhat:subscription-manager:1.8.2
-
cpe:2.3:a:redhat:subscription-manager:1.8.20
-
cpe:2.3:a:redhat:subscription-manager:1.8.21
-
cpe:2.3:a:redhat:subscription-manager:1.8.22
-
cpe:2.3:a:redhat:subscription-manager:1.8.24
-
cpe:2.3:a:redhat:subscription-manager:1.8.25
-
cpe:2.3:a:redhat:subscription-manager:1.8.3
-
cpe:2.3:a:redhat:subscription-manager:1.8.4
-
cpe:2.3:a:redhat:subscription-manager:1.8.5
-
cpe:2.3:a:redhat:subscription-manager:1.8.6
-
cpe:2.3:a:redhat:subscription-manager:1.8.7
-
cpe:2.3:a:redhat:subscription-manager:1.8.8
-
cpe:2.3:a:redhat:subscription-manager:1.8.9
-
cpe:2.3:a:redhat:subscription-manager:1.9.1
-
cpe:2.3:a:redhat:subscription-manager:1.9.10
-
cpe:2.3:a:redhat:subscription-manager:1.9.11
-
cpe:2.3:a:redhat:subscription-manager:1.9.12
-
cpe:2.3:a:redhat:subscription-manager:1.9.13
-
cpe:2.3:a:redhat:subscription-manager:1.9.2
-
cpe:2.3:a:redhat:subscription-manager:1.9.3
-
cpe:2.3:a:redhat:subscription-manager:1.9.4
-
cpe:2.3:a:redhat:subscription-manager:1.9.5
-
cpe:2.3:a:redhat:subscription-manager:1.9.6
-
cpe:2.3:a:redhat:subscription-manager:1.9.7
-
cpe:2.3:a:redhat:subscription-manager:1.9.8
-
cpe:2.3:a:redhat:subscription-manager:1.9.9
-
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
-
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
-
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0
-
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server:7.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0