Lucene search
HistoryMay 14, 2015 - 2:59 p.m.
CVE-2014-8162
cve-2014-8162
xxe
rpc interface
spacewalk
rhn satellite 5.7
nvd
red hat network
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.7%
XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.
Affected configurations
Node
redhatnetwork_satelliteRange≤5.7
Node
susemanagerMatch1.7
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:network_satellite | redhat network satellite | le | 5.7 |
Related
veracode
veracode
XML External Entity (XXE)
2019-01-15 09:06:01
cvelist
cvelist
CVE-2014-8162
2015-05-14 14:00:00
nessus
nessus
RHEL 6 : Satellite Server (RHSA-2015:0957)
2015-05-12 00:00:00
nvd
nvd
CVE-2014-8162
2015-05-14 14:59:05
redhat
redhat
(RHSA-2015:0957) Moderate: spacewalk-java security update
2015-05-11 00:00:00
prion
prion
Xxe
2015-05-14 14:59:00
suse
suse
Security update for SUSE Manager Server 1.7 (important)
2015-05-22 00:05:32
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.7%
Related for CVE-2014-8162