Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2020-4272.NASLHistoryOct 19, 2020 - 12:00 a.m.
RHEL 8 : nodejs:12 (RHSA-2020:4272)
2020-10-1900:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
42
rhel 8
vulnerabilities
nodejs-dot-prop
nodejs
http request smuggling
libuv
buffer overflow
npm
sensitive information exposure
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
Low
EPSS
0.003
Percentile
71.6%
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4272 advisory.
-
nodejs-dot-prop: prototype pollution (CVE-2020-8116)
-
nodejs: HTTP request smuggling due to CR-to-Hyphen conversion (CVE-2020-8201)
-
libuv: buffer overflow in realpath (CVE-2020-8252)
-
npm: sensitive information exposure through logs (CVE-2020-15095)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2020:4272. The text
# itself is copyright (C) Red Hat, Inc.
##
include('compat.inc');
if (description)
{
script_id(141536);
script_version("1.12");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/28");
script_cve_id(
"CVE-2020-8116",
"CVE-2020-8201",
"CVE-2020-8252",
"CVE-2020-15095"
);
script_xref(name:"RHSA", value:"2020:4272");
script_xref(name:"IAVB", value:"2020-B-0057-S");
script_name(english:"RHEL 8 : nodejs:12 (RHSA-2020:4272)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates for nodejs:12.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2020:4272 advisory.
- nodejs-dot-prop: prototype pollution (CVE-2020-8116)
- nodejs: HTTP request smuggling due to CR-to-Hyphen conversion (CVE-2020-8201)
- libuv: buffer overflow in realpath (CVE-2020-8252)
- npm: sensitive information exposure through logs (CVE-2020-15095)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://access.redhat.com/security/data/csaf/v2/advisories/2020/rhsa-2020_4272.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3fa1657d");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#moderate");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2020:4272");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1856875");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1868196");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1879311");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1879315");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1883966");
script_set_attribute(attribute:"solution", value:
"Update the RHEL nodejs:12 package based on the guidance in RHSA-2020:4272.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-8116");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-8252");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(122, 444, 471, 532);
script_set_attribute(attribute:"vendor_severity", value:"Moderate");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/02/04");
script_set_attribute(attribute:"patch_publication_date", value:"2020/10/19");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/10/19");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs-full-i18n");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs-nodemon");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nodejs-packaging");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:npm");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "redhat_repos.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
var appstreams = {
'nodejs:12': [
{
'repo_relative_urls': [
'content/dist/rhel8/8.10/aarch64/appstream/debug',
'content/dist/rhel8/8.10/aarch64/appstream/os',
'content/dist/rhel8/8.10/aarch64/appstream/source/SRPMS',
'content/dist/rhel8/8.10/ppc64le/appstream/debug',
'content/dist/rhel8/8.10/ppc64le/appstream/os',
'content/dist/rhel8/8.10/ppc64le/appstream/source/SRPMS',
'content/dist/rhel8/8.10/s390x/appstream/debug',
'content/dist/rhel8/8.10/s390x/appstream/os',
'content/dist/rhel8/8.10/s390x/appstream/source/SRPMS',
'content/dist/rhel8/8.10/x86_64/appstream/debug',
'content/dist/rhel8/8.10/x86_64/appstream/os',
'content/dist/rhel8/8.10/x86_64/appstream/source/SRPMS',
'content/dist/rhel8/8.6/aarch64/appstream/debug',
'content/dist/rhel8/8.6/aarch64/appstream/os',
'content/dist/rhel8/8.6/aarch64/appstream/source/SRPMS',
'content/dist/rhel8/8.6/ppc64le/appstream/debug',
'content/dist/rhel8/8.6/ppc64le/appstream/os',
'content/dist/rhel8/8.6/ppc64le/appstream/source/SRPMS',
'content/dist/rhel8/8.6/s390x/appstream/debug',
'content/dist/rhel8/8.6/s390x/appstream/os',
'content/dist/rhel8/8.6/s390x/appstream/source/SRPMS',
'content/dist/rhel8/8.6/x86_64/appstream/debug',
'content/dist/rhel8/8.6/x86_64/appstream/os',
'content/dist/rhel8/8.6/x86_64/appstream/source/SRPMS',
'content/dist/rhel8/8.8/aarch64/appstream/debug',
'content/dist/rhel8/8.8/aarch64/appstream/os',
'content/dist/rhel8/8.8/aarch64/appstream/source/SRPMS',
'content/dist/rhel8/8.8/ppc64le/appstream/debug',
'content/dist/rhel8/8.8/ppc64le/appstream/os',
'content/dist/rhel8/8.8/ppc64le/appstream/source/SRPMS',
'content/dist/rhel8/8.8/s390x/appstream/debug',
'content/dist/rhel8/8.8/s390x/appstream/os',
'content/dist/rhel8/8.8/s390x/appstream/source/SRPMS',
'content/dist/rhel8/8.8/x86_64/appstream/debug',
'content/dist/rhel8/8.8/x86_64/appstream/os',
'content/dist/rhel8/8.8/x86_64/appstream/source/SRPMS',
'content/dist/rhel8/8.9/aarch64/appstream/debug',
'content/dist/rhel8/8.9/aarch64/appstream/os',
'content/dist/rhel8/8.9/aarch64/appstream/source/SRPMS',
'content/dist/rhel8/8.9/ppc64le/appstream/debug',
'content/dist/rhel8/8.9/ppc64le/appstream/os',
'content/dist/rhel8/8.9/ppc64le/appstream/source/SRPMS',
'content/dist/rhel8/8.9/s390x/appstream/debug',
'content/dist/rhel8/8.9/s390x/appstream/os',
'content/dist/rhel8/8.9/s390x/appstream/source/SRPMS',
'content/dist/rhel8/8.9/x86_64/appstream/debug',
'content/dist/rhel8/8.9/x86_64/appstream/os',
'content/dist/rhel8/8.9/x86_64/appstream/source/SRPMS',
'content/dist/rhel8/8/aarch64/appstream/debug',
'content/dist/rhel8/8/aarch64/appstream/os',
'content/dist/rhel8/8/aarch64/appstream/source/SRPMS',
'content/dist/rhel8/8/ppc64le/appstream/debug',
'content/dist/rhel8/8/ppc64le/appstream/os',
'content/dist/rhel8/8/ppc64le/appstream/source/SRPMS',
'content/dist/rhel8/8/s390x/appstream/debug',
'content/dist/rhel8/8/s390x/appstream/os',
'content/dist/rhel8/8/s390x/appstream/source/SRPMS',
'content/dist/rhel8/8/x86_64/appstream/debug',
'content/dist/rhel8/8/x86_64/appstream/os',
'content/dist/rhel8/8/x86_64/appstream/source/SRPMS'
],
'pkgs': [
{'reference':'nodejs-12.18.4-2.module+el8.2.0+8361+192e434e', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'nodejs-devel-12.18.4-2.module+el8.2.0+8361+192e434e', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'nodejs-docs-12.18.4-2.module+el8.2.0+8361+192e434e', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'nodejs-full-i18n-12.18.4-2.module+el8.2.0+8361+192e434e', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'nodejs-nodemon-1.18.3-1.module+el8.1.0+3369+37ae6a45', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nodejs-packaging-17-3.module+el8.1.0+3369+37ae6a45', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE},
{'reference':'npm-6.14.6-1.12.18.4.2.module+el8.2.0+8361+192e434e', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'}
]
}
]
};
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:appstreams, appstreams:TRUE);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var module_ver = get_kb_item('Host/RedHat/appstream/nodejs');
if (isnull(module_ver)) audit(AUDIT_PACKAGE_NOT_INSTALLED, 'Module nodejs:12');
if ('12' >!< module_ver) audit(AUDIT_PACKAGE_NOT_AFFECTED, 'Module nodejs:' + module_ver);
var flag = 0;
var appstreams_found = 0;
foreach var module (keys(appstreams)) {
var appstream = NULL;
var appstream_name = NULL;
var appstream_version = NULL;
var appstream_split = split(module, sep:':', keep:FALSE);
if (!empty_or_null(appstream_split)) {
appstream_name = appstream_split[0];
appstream_version = appstream_split[1];
if (!empty_or_null(appstream_name)) appstream = get_one_kb_item('Host/RedHat/appstream/' + appstream_name);
}
if (!empty_or_null(appstream) && appstream_version == appstream || appstream_name == 'all') {
appstreams_found++;
foreach var module_array ( appstreams[module] ) {
var repo_relative_urls = NULL;
if (!empty_or_null(module_array['repo_relative_urls'])) repo_relative_urls = module_array['repo_relative_urls'];
foreach var package_array ( module_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'RHEL' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['cves'])) cves = package_array['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
}
}
if (!appstreams_found) audit(AUDIT_PACKAGE_NOT_INSTALLED, 'Module nodejs:12');
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'nodejs / nodejs-devel / nodejs-docs / nodejs-full-i18n / etc');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15095
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8116
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8201
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8252
www.nessus.org/u?3fa1657d
access.redhat.com/errata/RHSA-2020:4272
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1856875
bugzilla.redhat.com/show_bug.cgi?id=1868196
bugzilla.redhat.com/show_bug.cgi?id=1879311
bugzilla.redhat.com/show_bug.cgi?id=1879315
bugzilla.redhat.com/show_bug.cgi?id=1883966
Related
redhat
redhat
(RHSA-2020:4272) Moderate: nodejs:12 security and bug fix update
2020-10-19 07:13:10
(RHSA-2020:4903) Moderate: nodejs:12 security and bug fix update
2020-11-04 09:29:19
(RHSA-2020:5086) Moderate: rh-nodejs12-nodejs security update
2020-11-11 13:06:16
nessus
nessus
Oracle Linux 8 : nodejs:12 (ELSA-2020-4272)
2020-10-21 00:00:00
RHEL 7 : rh-nodejs12-nodejs (RHSA-2020:5086)
2023-01-23 00:00:00
RHEL 8 : nodejs:12 (RHSA-2020:4903)
2020-11-04 00:00:00
ibm
ibm
almalinux
almalinux
Moderate: nodejs:12 security and bug fix update
2020-10-19 07:13:10
Moderate: nodejs:10 security update
2021-02-16 07:34:15
osv
osv
Moderate: nodejs:12 security and bug fix update
2020-10-19 07:13:10
Moderate: nodejs:12 security and bug fix update
2020-10-19 07:13:10
CVE-2020-8252
2020-09-18 21:15:13
rocky
rocky
nodejs:12 security and bug fix update
2020-10-19 07:13:10
nodejs:10 security update
2021-02-16 07:34:15
oraclelinux
oraclelinux
nodejs:12 security and bug fix update
2020-10-20 00:00:00
nodejs:10 security update
2021-02-20 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:2813-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for nodejs12 (openSUSE-SU-2020:1616-1)
2020-10-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2812-1)
2021-06-09 00:00:00
suse
suse
Security update for nodejs12 (important)
2020-10-05 00:00:00
Security update for nodejs10 (important)
2020-10-12 00:00:00
Security update for nodejs8 (moderate)
2020-10-10 00:00:00
nodejsblog
nodejsblog
September 2020 Security Releases
2020-09-15 00:00:00
freebsd
freebsd
Node.js -- September 2020 Security Releases
2020-09-08 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: nodejs-14.15.1-1.fc33
2020-12-13 02:10:30
gentoo
gentoo
libuv: Buffer overflow
2020-09-29 00:00:00
NodeJS: Multiple vulnerabilities
2021-01-11 00:00:00
ubuntu
ubuntu
libuv vulnerability
2020-09-28 00:00:00
redhatcve
redhatcve
nvd
nvd
hackerone
hackerone
Node.js: `fs.realpath.native` on darwin may cause buffer overflow
2020-08-24 15:18:48
Node.js: HTTP Request Smuggling due to CR-to-Hyphen conversion
2020-07-13 14:57:33
Node.js third-party modules: Prototype pollution in dot-prop
2019-10-22 12:06:11
cve
cve
prion
prion
Design/Logic Flaw
2020-09-18 21:15:00
Buffer overflow
2020-09-18 21:15:00
Code injection
2020-02-04 20:15:00
ubuntucve
ubuntucve
alpinelinux
alpinelinux
CVE-2020-8252
2020-09-18 21:15:13
CVE-2020-8201
2020-09-18 21:15:12
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0331
2020-10-13 00:00:00
Important Photon OS Security Update - PHSA-2020-0150
2020-10-12 00:00:00
Important Photon OS Security Update - PHSA-2020-0331
2020-10-13 00:00:00
debiancve
debiancve
cvelist
cvelist
veracode
veracode
Prototype Pollution
2020-01-29 05:16:54
Clickjacking Attack
2020-09-24 10:39:21
Buffer Overflow
2020-09-24 10:38:51
githubexploit
githubexploit
Exploit for Prototype Pollution in Dot-Prop Project Dot-Prop
2020-12-01 09:45:48
Exploit for Insertion of Sensitive Information into Log File in Npmjs Npm
2020-12-01 09:45:48
nodejs
nodejs
Prototype Pollution
2019-10-14 17:43:55
Sensitive Data Exposure
2020-07-07 19:03:09
github
github
dot-prop Prototype Pollution vulnerability
2020-07-29 20:56:59
npm CLI exposing sensitive information through logs
2020-07-07 18:56:16
mageia
mageia
Updated libuv packages a fix security vulnerability
2020-11-08 17:14:27
Updated nodejs packages fix security vulnerabilities
2020-09-27 23:06:37
threatpost
threatpost
IBM Squashes Critical Remote Code-Execution Flaw
2021-02-23 19:36:32
ics
ics
Hitachi Energy Gateway Station (GWS) Product
2022-08-30 12:00:00
Hitachi Energy FACTS Control Platform (FCP) Product
2022-08-30 12:00:00
Hitachi Energy MicroSCADA Pro/X SYS600
2022-04-21 12:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package node version 14.11.0-alt1
2020-09-16 00:00:00
Security fix for the ALT Linux 9 package node version 14.11.0-alt1
2020-09-16 00:00:00
amazon
amazon
Important: libuv
2021-01-05 23:34:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
Low
EPSS
0.003
Percentile
71.6%
Related for REDHAT-RHSA-2020-4272.NASL