CCE-26846-6| Platform: cpe:/o:centos:centos:6, cpe:/o:redhat:enterprise_linux:6, cpe:/o:ubuntu:ubuntu_linux:14.10 | Date: (C)2014-09-10 (M)2023-07-04 |
The CentOS Network service automatically queries CentOS Network servers to determine whether there are any actions that should be executed, such as package updates. This only occurs if the system was registered to an CentOS server or satellite and managed as such. The rhnsd service can be disabled with the following command: # chkconfig rhnsd off
Parameter:
[]
Technical Mechanism:
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 8.1 | Attack Vector: NETWORK |
| Exploit Score: 2.2 | Attack Complexity: HIGH |
| Impact Score: 5.9 | Privileges Required: NONE |
| Severity: HIGH | User Interaction: NONE |
| Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: HIGH |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:20275 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:21965 |
