PT-2018-8394 · Red Hat · Red Hat Satellite

Jan Hutar

Publicado

2017-11-09

Atualizado

2023-02-12

CVE-2017-7514

CVSS v3.1

5.4

Média

Vetor

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Red Hat Satellite versions prior to 5.8.0

Description A cross-site scripting (XSS) flaw was found in how the failed action entry is processed. This issue could be exploited by a user who can specify a failed action to perform XSS attacks against other users.

Recommendations For versions prior to 5.8.0, update to version 5.8.0 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2017-7514

RHSA-2017:1558

SUSE-SU-2017:2964-1

Produtos afetados

Red Hat Satellite

PT-2018-8394 · Red Hat · Red Hat Satellite

CVE-2017-7514

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 46