Red Hat Satellite before 6.5 is vulnerable to a XSS in discovery rule when you are entering filter and you use autocomplete functionality.
Max CVSS
5.4
EPSS Score
0.16%
Published
2018-07-26
Updated
2023-02-12
A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.
Max CVSS
5.4
EPSS Score
0.07%
Published
2018-07-26
Updated
2019-10-09
A cross-site scripting (XSS) flaw was found in how the failed action entry is processed in Red Hat Satellite before version 5.8.0. A user able to specify a failed action could exploit this flaw to perform XSS attacks against other Satellite users.
Max CVSS
5.4
EPSS Score
0.05%
Published
2018-07-30
Updated
2023-02-12
3 vulnerabilities found