3 matches found
CVE-2019-10137
CVE-2019-10137 : A path traversal flaw in spacewalk-proxy (versions up to 2.9) stems from how the proxy processes cached client tokens, allowing a remote, unauthenticated attacker to test for arbitrary files on the proxy filesystem or execute code in the httpd context. Affected: spacewalk-proxy. ...
Important: Red Hat Security Advisory: spacewalk-backend and spacewalk-proxy security update
An update for spacewalk-backend and spacewalk-proxy is now available for Red Hat Satellite Proxy v 5.8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
CVE-2019-10137
A path traversal flaw was found in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy's filesystem, or can execute arbitrary code in the context of the httpd process...