africa.absa:inception-api (>=1.1.0 <=1.2.0), africa.absa:inception-application (>=1.1.0 <=1.2.0) +10205 more potentially affected by CVE-2022-22965 via org.springframework:spring-beans (>=5.3.0 <=5.3.17)

org.springframework:spring-beans MAVEN version =5.3.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.2.0 and more Source cves: CVE-2022-22965 Source advisory: OSV:GHSA-36P3-WJMG-H94X...

Authorization Bypass

spacewalk-config is vulnerable to authorization bypass. The vulnerability exists as RHN Satellite incorrectly exposed an obsolete XML-RPC API for configuring package group comps.xml files for channels. An authenticated user could use this flaw to gain access to arbitrary files accessible to the R...

Design/Logic Flaw

Red Hat Network RHN Satellite 5.3 and 5.4 exposes a dangerous, obsolete XML-RPC API, which allows remote authenticated users to access arbitrary files and cause a denial of service failed yum operations via vectors related to configuration and package group comps.xml files for channels...

CVE-2010-1171

CVE-2010-1171 affects Red Hat Network Satellite (RHN Satellite) 5.3 and 5.4. The vulnerability stems from an obsolete XML-RPC API exposed by RHN Satellite, enabling an authenticated user to access arbitrary files and trigger a denial of service via manipulation of configuration and package group ...

Moderate: Red Hat Security Advisory: security update for Red Hat Network Satellite

Updated packages that fix two security issues are now available for Red Hat Network Satellite 5.3 and 5.4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...