RHSA-2026:22326 Red Hat Security Advisory: Satellite 6.19.1 Async Update

Bulletin has no description...

RHSA-2025:21886 Red Hat Security Advisory: Satellite 6.18.1 Async Update

Bulletin has no description...

RHSA-2025:17693 Red Hat Security Advisory: Satellite 6 Client Bug Fix Update

Bulletin has no description...

Important: Red Hat Security Advisory: Satellite 6.15.5.4 Async Update

An update is now available for Red Hat Satellite 6.15 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

RHSA-2025:15371 Red Hat Security Advisory: Satellite 6 Client Bug Fix Update

Bulletin has no description...

RHEL 8 / 9 : Satellite 6 Client Bug Fix Update (Moderate) (RHSA-2025:15371)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:15371 advisory. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to...

puppet-pulpcore: An authentication bypass vulnerability exists in pulpcore

An authentication bypass vulnerability has been identified in Pulpcore when deployed with Gunicorn versions prior to 22.0, due to the puppet-pulpcore configuration. This issue arises from Apache's modproxy not properly unsetting headers because of restrictions on underscores in HTTP headers,...

puppet-pulpcore: An authentication bypass vulnerability exists in pulpcore

An authentication bypass vulnerability has been identified in Pulpcore when deployed with Gunicorn versions prior to 22.0, due to the puppet-pulpcore configuration. This issue arises from Apache's modproxy not properly unsetting headers because of restrictions on underscores in HTTP headers,...

SUSE CVE-2014-8183

It was found that foreman, versions 1.x.x before 1.15.6, in Satellite 6 did not properly enforce access controls on certain resources. An attacker with access to the API and knowledge of the resource name can access resources in other organizations...

Red Hat Satellite 6 Information Disclosure Vulnerability

Red Hat Satellite is a system management platform from Red Hat. The platform can be used to extend Linux infrastructures and provide system management functions such as administration, configuration, and monitoring. An information disclosure vulnerability exists in Red Hat Satellite. The...

foreman: privilege escalation through Organization and Locations API

It was found that Satellite 6 did not properly enforce access controls on certain resources. An attacker, with access to the API and knowledge of the ID name, can potentially access other resources in other organizations...