VYPR

rpm package

suse/redstone-xmlrpc&distro=SUSE Manager Server 3.2

pkg:rpm/suse/redstone-xmlrpc&distro=SUSE%20Manager%20Server%203.2

Vulnerabilities (2)

  • CVE-2020-1693Feb 17, 2020
    affected < 1.1_20071120-0.11.3.1fixed 1.1_20071120-0.11.3.1

    A flaw was found in Spacewalk up to version 2.9 where it was vulnerable to XML internal entity attacks via the /rpc/api endpoint. An unauthenticated remote attacker could use this flaw to retrieve the content of certain files and trigger a denial of service, or in certain circums

  • CVE-2018-1077HigMar 14, 2018
    affected < 1.1_20071120-0.11.3.1fixed 1.1_20071120-0.11.3.1

    Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server.