Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat spacewalk vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2020-1693
A flaw was found in Spacewalk up to version 2.9 where it was vulnerable to XML internal entity attacks via the /rpc/api endpoint. An unauthenticated remote attacker could use this flaw to retrieve the content of certain files and trigger a denial of service, or in certain circums...
Redhat Spacewalk
356
VMScore
CVE-2019-10136
It was found that Spacewalk, all versions up to and including 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the c...
Redhat Satellite 5.8
Redhat Spacewalk
668
VMScore
CVE-2019-10137
A path traversal flaw was found in spacewalk-proxy, all versions up to and including 2.9, in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy's ...
Redhat Satellite 5.0
Redhat Spacewalk
383
VMScore
CVE-2014-3595
Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 up to and including 5.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted request that is not properly handle...
Redhat Satellite 5.4
Redhat Satellite 5.5
Redhat Satellite 5.6
Redhat Satellite With Embedded Oracle 5.4
Redhat Satellite With Embedded Oracle 5.5
Redhat Spacewalk-java 1.2.39
Redhat Spacewalk-java 1.7.54
Redhat Spacewalk-java 2.0.2
Suse Manager 1.7
Suse Manager Server -
383
VMScore
CVE-2011-2920
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allow remote malicious users to inject arbitrary web script or HTML via the "Filter by Synopsis" field and other unspecified filter forms.
Redhat Spacewalk 1.6
Redhat Network Satellite -
445
VMScore
CVE-2018-1077
Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server.
Redhat Spacewalk 2.6
Redhat Satellite 5.0
383
VMScore
CVE-2011-3344
Cross-site scripting (XSS) vulnerability in the Lookup Login/Password form in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to inject arbitrary web script or HTML via the URI.
Redhat Spacewalk 1.6
Redhat Network Satellite -
516
VMScore
CVE-2011-1594
Open redirect vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url_bounce parameter.
Redhat Spacewalk 1.6
Redhat Network Satellite -
383
VMScore
CVE-2011-2919
Cross-site scripting (XSS) vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote malicious users to inject arbitrary web script or HTML via the QueryString to the SystemGroupList.do page.
Redhat Spacewalk 1.6
Redhat Network Satellite -
383
VMScore
CVE-2011-2927
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allow remote malicious users to inject arbitrary web script or HTML via vectors related to Search forms.
Redhat Spacewalk 1.6
Redhat Network Satellite -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »