CVE-2011-2927

Redhat Network Satellite - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allow remote attackers to inject arbitrary web script or HTML via vectors related to Search forms.

References (3)

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2011-1299.html

[Vendor Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=730955

[Vendor Advisory] https://www.redhat.com/archives/spacewalk-announce-list/2011-December/msg00000.html

Scores

EPSS 0.0028

EPSS Percentile 51.6%

Details

CWE

CWE-79

Status published

Products (3)

redhat/network_satellite

redhat/spacewalk

n/a/n/a

Published Feb 05, 2014

Tracked Since Feb 18, 2026