VYPR

RHN Satellite

by Red Hat

CVEs (4)

  • CVE-2014-8162May 14, 2015
    Red Hat
    Network Satellite
    risk 0.00cvss epss 0.01

    XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.

  • CVE-2014-7812Jan 15, 2015
    Red Hat
    Satellite
    risk 0.00cvss epss 0.00

    Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.

  • CVE-2012-6149Feb 14, 2014
    Red Hat
    Satellite
    risk 0.00cvss epss 0.00

    Multiple cross-site scripting (XSS) vulnerabilities in systems/sdc/notes.jsp in Spacewalk and Red Hat Network (RHN) Satellite 5.6 allow remote attackers to inject arbitrary web script or HTML via the (1) subject or (2) content values of a note in a system.addNote XML-RPC call.

  • CVE-2011-4346Dec 10, 2011
    Red Hat
    Satellite
    risk 0.00cvss epss 0.00

    Cross-site scripting (XSS) vulnerability in the web interface in Red Hat Network (RHN) Satellite 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field of the asset tag in a Custom Info page.