Redhat: >> Livecd-Tools >> 004 Security Vulnerabilities
Red Hat livecd-tools before 13.4.4, 17.x before 17.17, 18.x before 18.16, and 19.x before 19.3, when a rootpw directive is not set in a Kickstart file, sets the root user password to empty, which allows local users to gain privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
2013-05-29