Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the REST API.
References
Configurations
History
13 Feb 2023, 00:42
Type | Values Removed | Values Added |
---|---|---|
Summary | Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the REST API. | |
References |
|
02 Feb 2023, 15:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | CVE-2014-7811 Red Hat Satellite, Spacewalk: multiple XSS |
Information
Published : 2015-01-15 15:59
Updated : 2023-12-10 11:31
NVD link : CVE-2014-7811
Mitre link : CVE-2014-7811
CVE.ORG link : CVE-2014-7811
JSON object : View
Products Affected
suse
- manager
redhat
- network_satellite
- spacewalk
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')