Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6
CVSSv2

CVE-2010-2236

Published: 15/04/2014 Updated: 03/02/2022
CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8
VMScore: 534
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Subscribe to Redhat

Vulnerability Summary

The monitoring probe display in spacewalk-java prior to 2.1.148-1 and Red Hat Network (RHN) Satellite 4.0.0 up to and including 4.2.0 and 5.1.0 up to and including 5.3.0, and Proxy 5.3.0, allows remote authenticated users with permissions to administer monitoring probes to execute arbitrary code via unspecified vectors, related to backticks.

Vulnerable Product Search on Vulmon Subscribe to Product

redhat satellite 4.0

redhat satellite 4.2

redhat satellite 5.3

redhat spacewalk-java

redhat network proxy 5.3

redhat satellite 5.1

redhat satellite 5.2

redhat satellite 4.1

Vendor Advisories

Red Hat: CVE-2010-2236
The monitoring probe display in spacewalk-java before 21148-1 and Red Hat Network (RHN) Satellite 400 through 420 and 510 through 530, and Proxy 530, allows remote authenticated users with permissions to administer monitoring probes to execute arbitrary code via unspecified vectors, related to backticks ...

References

CWE-20https://bugzilla.redhat.com/attachment.cgi?id=819987&action=diffhttp://secunia.com/advisories/56952https://bugzilla.redhat.com/show_bug.cgi?id=607712https://git.fedorahosted.org/cgit/spacewalk.git/commit/?id=c41c87a9dc9dac771eb761dd63ada05b2f9104f9https://git.fedorahosted.org/cgit/spacewalk.git/commit/?id=18c70164285cae0660fa3ac55c6656bb19b3b13fhttps://www.suse.com/support/update/announcement/2014/suse-su-20140222-1.htmlhttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2010-2236
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook