Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
satellite vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2009-0788
Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote malicious users to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses ...
Redhat Network Satellite Server 5.3
Redhat Network Satellite Server 5.4
4
CVSSv2
CVE-2020-10716
A flaw was found in Red Hat Satellite's Job Invocation, where the "User Input" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitiv...
Redhat Satellite Capsule 6.7
Redhat Satellite 6.7
Theforeman Foreman Ansible
5.2
CVSSv2
CVE-2019-3845
A lack of access control was found in the message queues maintained by Satellite's QPID broker and used by katello-agent in versions before Satellite 6.2, Satellite 6.1 optional and Satellite Capsule 6.1. A malicious user authenticated to a host registered to Satellite (or C...
Redhat Satellite
NA
CVE-2023-4320
An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity.
Redhat Satellite
3.3
CVSSv2
CVE-2012-5562
rhn-proxy: may transmit credentials over clear-text when accessing RHN Satellite
Redhat Satellite
6.5
CVSSv2
CVE-2018-14666
An improper authorization flaw was found in the Smart Class feature of Foreman. An attacker can use it to change configuration of any host registered in Red Hat Satellite, independent of the organization the host belongs to. This flaw affects all Red Hat Satellite 6 versions.
Redhat Satellite
6.4
CVSSv2
CVE-2008-2369
manzier.pxt in Red Hat Network Satellite Server prior to 5.1.1 has a hard-coded authentication key, which allows remote malicious users to connect to the server and obtain sensitive information about user accounts and entitlements.
Redhat Satellite
4.3
CVSSv2
CVE-2014-0141
Cross-site scripting (XSS) vulnerability in Red Hat Satellite 6.0.3.
Redhat Satellite 6.0.3
2.1
CVSSv2
CVE-2020-14335
A flaw was found in Red Hat Satellite, which allows a privileged malicious user to read OMAPI secrets through the ISC DHCP of Smart-Proxy. This flaw allows an malicious user to gain control of DHCP records from the network. The highest threat from this vulnerability is to system ...
Redhat Satellite 6.0
4
CVSSv2
CVE-2020-14371
A credential leak vulnerability was found in Red Hat Satellite. This flaw exposes the compute resources credentials through VMs that are running on these resources in Satellite.
Redhat Satellite 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »