Lucene search
RedhatCVE-2014-8162HistoryMay 14, 2015 - 2:59 p.m.
CVE-2014-8162
2015-05-1414:59:05
redhat
web.nvd.nist.gov
48
cve-2014-8162
xxe
rpc interface
spacewalk
rhn satellite 5.7
nvd
red hat network
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.007
Percentile
80.6%
XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.
Affected configurations
Node
redhatnetwork_satelliteRange≤5.7
Node
susemanagerMatch1.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | network_satellite | * | cpe:2.3:a:redhat:network_satellite:*:*:*:*:*:*:*:* |
| suse | manager | 1.7 | cpe:2.3:a:suse:manager:1.7:*:*:*:*:*:*:* |
Related
veracode
veracode
XML External Entity (XXE)
2019-01-15 09:06:01
redhat
redhat
(RHSA-2015:0957) Moderate: spacewalk-java security update
2015-05-11 00:00:00
nessus
nessus
RHEL 6 : Satellite Server (RHSA-2015:0957)
2015-05-12 00:00:00
cvelist
cvelist
CVE-2014-8162
2015-05-14 14:00:00
nvd
nvd
CVE-2014-8162
2015-05-14 14:59:05
prion
prion
Xxe
2015-05-14 14:59:00
suse
suse
Security update for SUSE Manager Server 1.7 (important)
2015-05-22 00:05:32
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.007
Percentile
80.6%
Related for CVE-2014-8162