Vulnerability Details CVE-2020-14380
An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the privileges of already existing local users of Satellite.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 6.0
References