Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
satellite vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-14380
An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the privileges of already existing local users of Satellite.
Redhat Satellite 6.7.2
2.7
CVSSv3
CVE-2017-15136
When registering and activating a new system with Red Hat Satellite 6 if the new systems hostname is then reset to the hostname of a previously registered system the previously registered system will lose access to updates including security updates.
Redhat Satellite 6.0
5.5
CVSSv3
CVE-2020-14335
A flaw was found in Red Hat Satellite, which allows a privileged malicious user to read OMAPI secrets through the ISC DHCP of Smart-Proxy. This flaw allows an malicious user to gain control of DHCP records from the network. The highest threat from this vulnerability is to system ...
Redhat Satellite 6.0
NA
CVE-2011-4346
Cross-site scripting (XSS) vulnerability in the web interface in Red Hat Network (RHN) Satellite 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field of the asset tag in a Custom Info page.
Redhat Satellite 5.4.1
4.4
CVSSv3
CVE-2018-5382
The default BKS keystore use an HMAC that is only 16 bits long, which can allow an malicious user to compromise the integrity of a BKS keystore. Bouncy Castle release 1.47 changes the BKS format to a format which uses a 160 bit HMAC instead. This applies to any BKS keystore gener...
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api
Redhat Satellite 6.4
Redhat Satellite Capsule 6.4
8.8
CVSSv3
CVE-2021-1139
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote malicious user to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of th...
Cisco Smart Software Manager Satellite
1 Article
9.8
CVSSv3
CVE-2021-1138
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote malicious user to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of th...
Cisco Smart Software Manager Satellite
1 Article
9.8
CVSSv3
CVE-2021-1140
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote malicious user to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of th...
Cisco Smart Software Manager Satellite
1 Article
8.8
CVSSv3
CVE-2021-1141
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote malicious user to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of th...
Cisco Smart Software Manager Satellite
1 Article
9.8
CVSSv3
CVE-2021-1142
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote malicious user to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of th...
Cisco Smart Software Manager Satellite
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »