Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.
References
Configurations
History
13 Feb 2023, 00:42
Type | Values Removed | Values Added |
---|---|---|
Summary | Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field. | |
References |
|
02 Feb 2023, 16:16
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2014-7812 Red Hat Satellite, Spacewalk: XSS in system-group | |
References |
|
03 Feb 2022, 16:26
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:* | |
First Time |
Redhat satellite
|
Information
Published : 2015-01-15 15:59
Updated : 2023-12-10 11:31
NVD link : CVE-2014-7812
Mitre link : CVE-2014-7812
CVE.ORG link : CVE-2014-7812
JSON object : View
Products Affected
redhat
- satellite
- spacewalk
suse
- manager
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')