Redhat Network Satellite — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Network Satellite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2013-4480 — CVSS 7.5 (high): Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows…
CVE-2014-8162 — CVSS 7.5 (high): XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to…
CVE-2013-2143 — CVSS 6.5 (medium): The users controller in Katello 1.5.0-14 and earlier, and Red Hat Satellite, does not check authorization for the update_roles action…
CVE-2011-1594 — CVSS 6.5 (medium): A flaw was found in Spacewalk, as used in Red Hat Network Satellite. This open redirect vulnerability allows remote attackers to redirect…
CVE-2011-2920 — CVSS 5.5 (medium): A flaw was found in Spacewalk and Red Hat Network Satellite. This cross-site scripting (XSS) vulnerability allows a remote attacker to…
CVE-2011-3344 — CVSS 5.4 (medium): A flaw was found in Spacewalk. A remote attacker can exploit a cross-site scripting (XSS) vulnerability in the Lookup Login/Password form…
CVE-2011-2927 — CVSS 5.4 (medium): A flaw was found in Spacewalk and Red Hat Network Satellite. This vulnerability, known as cross-site scripting (XSS), allows remote…
CVE-2007-5961 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Red Hat Network channel search feature, as used in RHN and Red Hat Network Satellite before…
CVE-2011-2919 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote attackers to inject…
CVE-2014-7811 — CVSS 3.5 (low): Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote…