Lucene search

Veracode Vulnerability DatabaseVERACODE:18962

HistoryMay 16, 2019 - 2:19 a.m.

Privilege Escalation

2019-05-1602:19:11

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

55.3%

JSON

Red Hat Satellite is vulnerable to privilege escalation vulnerability. This is because the Satellite 6 does not properly enforce access controls on certain resources. Remote authenticated users with unlimited filters could bypass organization and location restrictions and read or modify data for an arbitrary organization.

CPENameOperatorVersion
redhat-access-insights-puppeteq0.0.8__1.el7sat
rubygem-smart_proxy_discovery_imageeq1.0.5__4.el7sat
rubygem-smart_proxy_discovery_imageeq1.0.5__3.el7sat
rubygem-kafo_parserseq0.0.3__2.el7sat
rubygem-kafo_parserseq0.0.6__1.el7ui
rubygem-kafo_parserseq0.0.4.4__1.el7sat
rubygem-kafo_parserseq0.0.6__1.el7sat
tfm-rubygem-hammer_cli_foreman_remote_executioneq0.0.5.3__1.el7sat
tfm-rubygem-foreman_hookseq0.3.11__1.el7sat
satelliteeq6.2.12__4.0.el7sat

Name	Operator	Version
redhat-access-insights-puppet	eq	0.0.8__1.el7sat
rubygem-smart_proxy_discovery_image	eq	1.0.5__4.el7sat
rubygem-smart_proxy_discovery_image	eq	1.0.5__3.el7sat
rubygem-kafo_parsers	eq	0.0.3__2.el7sat
rubygem-kafo_parsers	eq	0.0.6__1.el7ui
rubygem-kafo_parsers	eq	0.0.4.4__1.el7sat
rubygem-kafo_parsers	eq	0.0.6__1.el7sat
tfm-rubygem-hammer_cli_foreman_remote_execution	eq	0.0.5.3__1.el7sat
tfm-rubygem-foreman_hooks	eq	0.3.11__1.el7sat
satellite	eq	6.2.12__4.0.el7sat

Rows per page:

1-10 of 6841

References

projects.theforeman.org/issues/15182

projects.theforeman.org/projects/foreman/repository/revisions/1144040f444b4bf4aae81940a150b26b23b4623c

access.redhat.com/documentation/en-us/red_hat_satellite/6.3/html/release_notes/

access.redhat.com/errata/RHSA-2018:0336

access.redhat.com/security/cve/CVE-2016-4451

access.redhat.com/security/cve/CVE-2017-15699

access.redhat.com/security/cve/CVE-2017-2295

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1019214

bugzilla.redhat.com/show_bug.cgi?id=1132402

bugzilla.redhat.com/show_bug.cgi?id=1133515

bugzilla.redhat.com/show_bug.cgi?id=1140671

bugzilla.redhat.com/show_bug.cgi?id=1144042

bugzilla.redhat.com/show_bug.cgi?id=1145653

bugzilla.redhat.com/show_bug.cgi?id=1154382

bugzilla.redhat.com/show_bug.cgi?id=1177766

bugzilla.redhat.com/show_bug.cgi?id=1187338

bugzilla.redhat.com/show_bug.cgi?id=1190002

bugzilla.redhat.com/show_bug.cgi?id=1199204

bugzilla.redhat.com/show_bug.cgi?id=1210878

bugzilla.redhat.com/show_bug.cgi?id=1215825

bugzilla.redhat.com/show_bug.cgi?id=1217523

bugzilla.redhat.com/show_bug.cgi?id=1245642

bugzilla.redhat.com/show_bug.cgi?id=1255484

bugzilla.redhat.com/show_bug.cgi?id=1257588

bugzilla.redhat.com/show_bug.cgi?id=1260697

bugzilla.redhat.com/show_bug.cgi?id=1263748

bugzilla.redhat.com/show_bug.cgi?id=1264043

bugzilla.redhat.com/show_bug.cgi?id=1264732

bugzilla.redhat.com/show_bug.cgi?id=1265125

bugzilla.redhat.com/show_bug.cgi?id=1270771

bugzilla.redhat.com/show_bug.cgi?id=1274159

bugzilla.redhat.com/show_bug.cgi?id=1278642

bugzilla.redhat.com/show_bug.cgi?id=1278644

bugzilla.redhat.com/show_bug.cgi?id=1284686

bugzilla.redhat.com/show_bug.cgi?id=1291935

bugzilla.redhat.com/show_bug.cgi?id=1292510

bugzilla.redhat.com/show_bug.cgi?id=1293538

bugzilla.redhat.com/show_bug.cgi?id=1303103

bugzilla.redhat.com/show_bug.cgi?id=1304608

bugzilla.redhat.com/show_bug.cgi?id=1305059

bugzilla.redhat.com/show_bug.cgi?id=1306723

bugzilla.redhat.com/show_bug.cgi?id=1309569

bugzilla.redhat.com/show_bug.cgi?id=1309944

bugzilla.redhat.com/show_bug.cgi?id=1313634

bugzilla.redhat.com/show_bug.cgi?id=1317614

bugzilla.redhat.com/show_bug.cgi?id=1318534

bugzilla.redhat.com/show_bug.cgi?id=1323436

bugzilla.redhat.com/show_bug.cgi?id=1324508

bugzilla.redhat.com/show_bug.cgi?id=1327030

bugzilla.redhat.com/show_bug.cgi?id=1328238

bugzilla.redhat.com/show_bug.cgi?id=1336924

bugzilla.redhat.com/show_bug.cgi?id=1339715

bugzilla.redhat.com/show_bug.cgi?id=1339889

bugzilla.redhat.com/show_bug.cgi?id=1340559

bugzilla.redhat.com/show_bug.cgi?id=1342623

bugzilla.redhat.com/show_bug.cgi?id=1344049

bugzilla.redhat.com/show_bug.cgi?id=1361473

bugzilla.redhat.com/show_bug.cgi?id=1366029

bugzilla.redhat.com/show_bug.cgi?id=1370168

bugzilla.redhat.com/show_bug.cgi?id=1376134

bugzilla.redhat.com/show_bug.cgi?id=1376191

bugzilla.redhat.com/show_bug.cgi?id=1382356

bugzilla.redhat.com/show_bug.cgi?id=1382735

bugzilla.redhat.com/show_bug.cgi?id=1384146

bugzilla.redhat.com/show_bug.cgi?id=1384548

bugzilla.redhat.com/show_bug.cgi?id=1386266

bugzilla.redhat.com/show_bug.cgi?id=1386278

bugzilla.redhat.com/show_bug.cgi?id=1390545

bugzilla.redhat.com/show_bug.cgi?id=1391831

bugzilla.redhat.com/show_bug.cgi?id=1393409

bugzilla.redhat.com/show_bug.cgi?id=1394056

bugzilla.redhat.com/show_bug.cgi?id=1402922

bugzilla.redhat.com/show_bug.cgi?id=1410872

bugzilla.redhat.com/show_bug.cgi?id=1412186

bugzilla.redhat.com/show_bug.cgi?id=1413851

bugzilla.redhat.com/show_bug.cgi?id=1416119

bugzilla.redhat.com/show_bug.cgi?id=1417073

bugzilla.redhat.com/show_bug.cgi?id=1420711

bugzilla.redhat.com/show_bug.cgi?id=1422458

bugzilla.redhat.com/show_bug.cgi?id=1425121

bugzilla.redhat.com/show_bug.cgi?id=1425523

bugzilla.redhat.com/show_bug.cgi?id=1426404

bugzilla.redhat.com/show_bug.cgi?id=1426411

bugzilla.redhat.com/show_bug.cgi?id=1426448

bugzilla.redhat.com/show_bug.cgi?id=1428761

bugzilla.redhat.com/show_bug.cgi?id=1429426

bugzilla.redhat.com/show_bug.cgi?id=1434069

bugzilla.redhat.com/show_bug.cgi?id=1435972

bugzilla.redhat.com/show_bug.cgi?id=1438376

bugzilla.redhat.com/show_bug.cgi?id=1439850

bugzilla.redhat.com/show_bug.cgi?id=1445807

bugzilla.redhat.com/show_bug.cgi?id=1446707

bugzilla.redhat.com/show_bug.cgi?id=1446719

bugzilla.redhat.com/show_bug.cgi?id=1452124

bugzilla.redhat.com/show_bug.cgi?id=1455057

bugzilla.redhat.com/show_bug.cgi?id=1455455

bugzilla.redhat.com/show_bug.cgi?id=1458817

bugzilla.redhat.com/show_bug.cgi?id=1464224

bugzilla.redhat.com/show_bug.cgi?id=1468248

bugzilla.redhat.com/show_bug.cgi?id=1480346

bugzilla.redhat.com/show_bug.cgi?id=1480348

bugzilla.redhat.com/show_bug.cgi?id=1493001

bugzilla.redhat.com/show_bug.cgi?id=1493494

bugzilla.redhat.com/show_bug.cgi?id=1517827

bugzilla.redhat.com/show_bug.cgi?id=1529099

theforeman.org/security.html#2016-4451

0.002 Low

EPSS

Percentile

55.3%

JSON

Related for VERACODE:18962