CVE-2016-2103 in Satelliteinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Satellite 5 allow remote attackers to inject arbitrary web script or HTML via (1) the list_1680466951_oldfilterval parameter to systems/PhysicalList.do or (2) unspecified vectors involving systems/VirtualSystemsList.do.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

01/29/2016

Disclosure

04/14/2016

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
82396Red Hat Satellite PhysicalList.do cross site scripting79Not definedOfficial fixCVE-2016-2103

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext