CVE Vulnerabilities

CVE-2014-8162

Published: May 14, 2015 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
4.3 MODERATE
AV:N/AC:M/Au:N/C:P/I:N/A:N
RedHat/V3
Ubuntu

XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.

Affected Software

Name Vendor Start Version End Version
Network_satellite Redhat * 5.7 (including)
Red Hat Satellite 5.7 RedHat spacewalk-java-0:2.3.8-103.el6sat *
Red Hat Satellite 5.7 RedHat spacewalk-setup-0:2.3.0-17.el6sat *

References