5 matches found
CVE-2018-1077
Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server...
CVE-2018-1077
Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server...
CVE-2018-1077
Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server...
CVE-2018-1077
Spacewalk 2.6 contains an XML External Entity (XXE) flaw in its API that can disclose server‑side sensitive information. Public descriptions confirm the CVE‑2018‑1077 issue; remediation in linked SUSE advisories includes disabling external entity parsing and preventing external entity downloads (...
CVE-2018-1077
Spacewalk includes an API endpoint that can be abused by attackers to execute an XXE XML External Entity Reference allowing for the disclosure of potentially sensitive information...