Author: Cyberthreat Blog

The PooledInvokerServlet in JBoss EAP 4.x and 5.x allows remote attackers to execute arbitrary code via a crafted serialized payload.

client/consumer/cli.py in Pulp before 2.8.3 writes consumer private keys to etc/pki/pulp/consumer/consumer-cert.pem as world-readable.

pulp.spec in Pulp 2.8.3 allows local users to read generated RSA keys.

The Node certificate in Pulp before 2.8.3 contains the private key, and is stored in a world-readable file in the “/etc/pki/pulp/nodes/” directory, which allows local users to gain access to sensitive data.

The pulp-gen-nodes-certificate script in Pulp before 2.8.3 allows local users to leak the keys or write to arbitrary files via a symlink attack.