Lucene search

K

Veracode Vulnerability DatabaseVERACODE:17235

HistoryMay 02, 2019 - 5:39 a.m.

Cross-Site Scripting (XSS)

2019-05-0205:39:46

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

EPSS

0.001

Percentile

47.4%

Red Hat Satellite is vulnerable to cross-site scripting (XSS). The vulnerability exists in the way spacewalk-java displays group names. This allows an attacker to inject arbitrary web script or HTML into the web page that is then displayed when viewing the snapshot data.

References

rhn.redhat.com/errata/RHSA-2016-1484.html

access.redhat.com/errata/RHSA-2016:1484

access.redhat.com/security/cve/CVE-2016-3097

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=1322710

bugzilla.redhat.com/show_bug.cgi?id=1322747

rhn.redhat.com/errata/RHSA-2016-1484.html

EPSS

0.001

Percentile

47.4%

Related for VERACODE:17235

cvelist1 prion1 nvd1 cve1 redhat1 nessus1