Security Advisory

CVE-2024-3716

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-05 15:05:37

Last updated 2025-11-21 06:41:06

Assigner redhat

State PUBLISHED

Description

A flaw was found in foreman-installer when puppet-candlepin is invoked cpdb with the --password parameter. This issue leaks the password in the process list and allows an attacker to take advantage and obtain the password.

← Browse all CVEs View on cve.org ↗