CVE-2015-5164

2017-10-1816:00:00

redhat

www.cve.org

AI Score

7.1

Confidence

High

EPSS

0.005

Percentile

75.2%

JSON

The Qpid server on Red Hat Satellite 6 does not properly restrict message types, which allows remote authenticated users with administrative access on a managed content host to execute arbitrary code via a crafted message, related to a pickle processing problem in pulp.

References

bugzilla.redhat.com/show_bug.cgi?id=1247732

pulp.plan.io/issues/23