Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat network satellite vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2143
The users controller in Katello 1.5.0-14 and previous versions, and Red Hat Satellite, does not check authorization for the update_roles action, which allows remote authenticated users to gain privileges by setting a user account to an administrator account.
Redhat Network Satellite -
Theforeman Katello
1 EDB exploit
NA
CVE-2010-2236
The monitoring probe display in spacewalk-java prior to 2.1.148-1 and Red Hat Network (RHN) Satellite 4.0.0 up to and including 4.2.0 and 5.1.0 up to and including 5.3.0, and Proxy 5.3.0, allows remote authenticated users with permissions to administer monitoring probes to execut...
Redhat Satellite 4.0
Redhat Satellite 4.2
Redhat Satellite 5.3
Redhat Spacewalk-java
Redhat Network Proxy 5.3
Redhat Satellite 5.1
Redhat Satellite 5.2
Redhat Satellite 4.1
NA
CVE-2011-3344
Cross-site scripting (XSS) vulnerability in the Lookup Login/Password form in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to inject arbitrary web script or HTML via the URI.
Redhat Spacewalk 1.6
Redhat Network Satellite -
NA
CVE-2011-1594
Open redirect vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url_bounce parameter.
Redhat Spacewalk 1.6
Redhat Network Satellite -
NA
CVE-2011-2919
Cross-site scripting (XSS) vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to inject arbitrary web script or HTML via the QueryString to the SystemGroupList.do page.
Redhat Spacewalk 1.6
Redhat Network Satellite -
NA
CVE-2011-2920
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allow remote malicious users to inject arbitrary web script or HTML via the "Filter by Synopsis" field and other unspecified filter forms.
Redhat Spacewalk 1.6
Redhat Network Satellite -
NA
CVE-2011-2927
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allow remote malicious users to inject arbitrary web script or HTML via vectors related to Search forms.
Redhat Spacewalk 1.6
Redhat Network Satellite -
NA
CVE-2012-0059
Spacewalk-backend in Red Hat Network (RHN) Satellite and Proxy 5.4 includes cleartext user passwords in an error message when a system registration XML-RPC call fails, which allows remote administrators to obtain the password by reading (1) the server log and (2) an email.
Redhat Network Proxy 5.4
Redhat Satellite 5.4
NA
CVE-2013-4480
Red Hat Satellite 5.6 and previous versions does not disable the web interface that is used to create the first user for a satellite, which allows remote malicious users to create administrator accounts.
Redhat Network Satellite
Redhat Satellite With Embedded Oracle 5.4
Redhat Satellite With Embedded Oracle 5.3
Redhat Satellite With Embedded Oracle 5.5
Redhat Satellite
Redhat Satellite With Embedded Oracle 5.2
Suse Manager 1.7
Suse Linux Enterprise 11.0
NA
CVE-2012-1717
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, 5 update 35 and previous versions, and 1.4.2_37 and previous versions allows local users to affect confidentiality via ...
Oracle Jre
Oracle Jre 1.5.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jdk
Oracle Jdk 1.5.0
Oracle Jdk 1.6.0
Oracle Jdk 1.7.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux For Scientific Computing 6.0
Redhat Enterprise Linux For Power Big Endian 5.0
Redhat Enterprise Linux Server Aus 6.2
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux For Ibm Z Systems 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Eus 6.2
Redhat Enterprise Linux Server From Rhui 6.0
Redhat Satellite With Embedded Oracle 5.5
Redhat Icedtea6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »