Lucene search
PRIOn knowledge basePRION:CVE-2014-3654HistoryNov 03, 2014 - 4:55 p.m.
Cross site scripting
2014-11-0316:55:00
PRIOn knowledge base
www.prio-n.com
3
Multiple cross-site scripting (XSS) vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) kickstart/cobbler/CustomSnippetList.do, (2) channels/software/Entitlements.do, or (3) admin/multiorg/OrgUsers.do.
| CPE | Name | Operator | Version |
|---|---|---|---|
| satellite | eq | 5.6 | |
| satellite | eq | 5.5 | |
| satellite_with_embedded_oracle | eq | 5.5 | |
| spacewalk-java | eq | 2.0.2 | |
| manager | eq | 1.7 |
Related
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 09:02:46
redhat
redhat
(RHSA-2014:1762) Moderate: spacewalk-java security update
2014-10-30 00:00:00
cvelist
cvelist
CVE-2014-3654
2014-11-03 16:00:00
cve
cve
CVE-2014-3654
2014-11-03 16:55:03
nessus
nessus
RHEL 5 / 6 : spacewalk-java (RHSA-2014:1762)
2014-11-17 00:00:00
nvd
nvd
CVE-2014-3654
2014-11-03 16:55:03
suse
suse
Security update for spacewalk-java (important)
2014-10-31 18:06:48
Security update for spacewalk-java (important)
2014-10-31 18:05:11