CVE-2014-3595

2014-09-22T11:55:07
ID CVE-2014-3595
Type cve
Reporter NVD
Modified 2014-11-13T22:04:29

Description

Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 through 5.6 allows remote attackers to inject arbitrary web script or HTML via a crafted request that is not properly handled when logging.