Lucene search
K

katello: SQL inject in errata-related REST API

🗓️ 21 Feb 2018 12:25:53Reported by RedHatType 
redhat
 redhat
🔗 access.redhat.com👁 2 Views

Katello errata REST API has SQL injection enabling authenticated remote attacker to leak internal IDs.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
CVE
CVE-2018-14623
13 Dec 201822:00
cve
Cvelist
CVE-2018-14623
13 Dec 201822:00
cvelist
EUVD
EUVD-2022-4457
3 Oct 202520:07
euvd
Github Security Blog
katello SQL Injection vulnerability
13 May 202201:34
github
NVD
CVE-2018-14623
14 Dec 201800:29
nvd
OSV
CVE-2018-14623
14 Dec 201800:29
osv
OSV
GHSA-JX5V-788G-QW58 katello SQL Injection vulnerability
13 May 202201:34
osv
OSV
RHSA-2018:0336 Red Hat Security Advisory: Satellite 6.3 security, bug fix, and enhancement update
16 Sep 202400:59
osv
Prion
Sql injection
14 Dec 201800:29
prion
Positive Technologies
PT-2018-12622 · Red Hat · Katello
13 Dec 201800:00
ptsecurity
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux7anycandlepin0:2.1.14-1.el7.noarchcandlepin-0:2.1.14-1.el7.noarch.noarch.rpm
Red Hat Enterprise Linux7anycandlepin-selinux0:2.1.14-1.el7.noarchcandlepin-selinux-0:2.1.14-1.el7.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman0:1.15.6.34-1.el7sat.noarchforeman-0:1.15.6.34-1.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-bootloaders-redhat0:201801241201-2.el7sat.noarchforeman-bootloaders-redhat-0:201801241201-2.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-bootloaders-redhat-tftpboot0:201801241201-2.el7sat.noarchforeman-bootloaders-redhat-tftpboot-0:201801241201-2.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-cli0:1.15.6.34-1.el7sat.noarchforeman-cli-0:1.15.6.34-1.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-compute0:1.15.6.34-1.el7sat.noarchforeman-compute-0:1.15.6.34-1.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-debug0:1.15.6.34-1.el7sat.noarchforeman-debug-0:1.15.6.34-1.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-discovery-image1:3.4.4-1.el7sat.noarchforeman-discovery-image-1:3.4.4-1.el7sat.noarch.noarch.rpm
Red Hat Enterprise Linux7anyforeman-ec20:1.15.6.34-1.el7sat.noarchforeman-ec2-0:1.15.6.34-1.el7sat.noarch.noarch.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

30 Jun 2026 11:35Current
5.9Medium risk
Vulners AI Score5.9
CVSS 24
CVSS 34.3
EPSS0.01428
2