5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.9%
It has been discovered in redhat-certification that any unauthorized user may download any file under /var/www/rhcert, provided they know its name. Red Hat Certification 6 and 7 is vulnerable to this issue.
bugzilla.redhat.com/show_bug.cgi?id=1593768