Lucene search
HistoryApr 18, 2011 - 5:55 p.m.
CVE-2010-1171
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
AI Score
6.5
Confidence
High
EPSS
0.007
Percentile
79.6%
Red Hat Network (RHN) Satellite 5.3 and 5.4 exposes a dangerous, obsolete XML-RPC API, which allows remote authenticated users to access arbitrary files and cause a denial of service (failed yum operations) via vectors related to configuration and package group (comps.xml) files for channels.
Affected configurations
Node
redhatsatelliteMatch5.3
ORredhatsatelliteMatch5.4
Related
veracode
veracode
Authorization Bypass
2020-04-10 00:56:04
cve
cve
CVE-2010-1171
2011-04-18 17:55:00
prion
prion
Design/Logic Flaw
2011-04-18 17:55:00
cvelist
cvelist
CVE-2010-1171
2011-04-18 17:00:00
redhat
redhat
(RHSA-2011:0434) Moderate: security update for Red Hat Network Satellite
2011-04-11 00:00:00
seebug
seebug
Red Hat Network Satellite Server安全绕过和信息泄露漏洞
2011-04-13 00:00:00
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
AI Score
6.5
Confidence
High
EPSS
0.007
Percentile
79.6%
Related for NVD:CVE-2010-1171