Lucene search
RedhatCVELIST:CVE-2022-4130HistoryDec 16, 2022 - 12:00 a.m.
CVE-2022-4130
2022-12-1600:00:00
redhat
www.cve.org
2
cve-2022-4130
site-to-site request forgery
vulnerability
satellite server
referer header
http request
external interaction
attacker's server
A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker’s server by modifying the Referer header in an HTTP request of specific resources in the server.
CNA Affected
[
{
"vendor": "n/a",
"product": "Satellite Server",
"versions": [
{
"version": "Satellite Server 6.9,6.10,6.11",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2022-4130
2022-12-16 16:15:25
redhatcve
redhatcve
CVE-2022-4130
2023-01-16 10:36:24
prion
prion
Cross site request forgery (csrf)
2022-12-16 16:15:00
nvd
nvd
CVE-2022-4130
2022-12-16 16:15:25
nessus
nessus
RHEL 8 : Red Hat Satellite 6 (RHSA-2024:1061)
2024-04-28 00:00:00
Rocky Linux 8 : Satellite 6.14 (RLSA-2023:6818)
2023-11-11 00:00:00
RHEL 8 : Satellite 6.14 (RHSA-2023:6818)
2024-04-29 00:00:00
redhat
redhat
(RHSA-2024:1061) Moderate: Red Hat Satellite 6 security and bug fix update
2024-02-29 20:30:29
(RHSA-2023:6818) Important: Satellite 6.14 security and bug fix update
2023-11-08 14:10:25
rocky
rocky
Satellite 6.14 security and bug fix update
2023-11-11 22:58:57