Design/Logic Flaw

2018-07-2617:29:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.7%

Red Hat Satellite before 6.5 is vulnerable to a XSS in discovery rule when you are entering filter and you use autocomplete functionality.

CPENameOperatorVersion
satellitelt6.5

CPE	Name	Operator	Version
	satellite	lt	6.5

References

www.securityfocus.com/bid/101245

access.redhat.com/errata/RHSA-2018:2927

bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12175

projects.theforeman.org/issues/22042