CVE-2013-2056
Red Hat Satellite 5.3-5.5 - Improper Authentication in Inter-Satellite Sync
Title source: llmDescription
The Inter-Satellite Sync (ISS) operation in Red Hat Network (RHN) Satellite 5.3, 5.4, and 5.5 does not properly check client "authenticity," which allows remote attackers to obtain channel content by skipping the initial authentication call.
References (3)
Core 3
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0848.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/93566
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/53487
Scores
EPSS
0.0237
EPSS Percentile
81.7%
Details
CWE
CWE-287
Status
published
Products (3)
redhat/satellite
5.3
redhat/satellite
5.4
redhat/satellite
5.5
Published
Jul 31, 2013
Tracked Since
Feb 18, 2026