CVE-2013-2143

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-2143. PoCs published by Metasploit, including Metasploit module auxiliary/admin/http/katello_satellite_priv_esc.

AI-analyzed exploit summary This Metasploit module exploits a missing authorization vulnerability in Katello and Red Hat Satellite (CVE-2013-2143) by escalating a user's privileges to administrator via the 'update_roles' action. It authenticates, retrieves a CSRF token, and sends a crafted PUT request to modify the user's role.

Description

The users controller in Katello 1.5.0-14 and earlier, and Red Hat Satellite, does not check authorization for the update_roles action, which allows remote authenticated users to gain privileges by setting a user account to an administrator account.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/32515

View Code ZIP pw:eip

This Metasploit module exploits a missing authorization vulnerability in Katello and Red Hat Satellite (CVE-2013-2143) by escalating a user's privileges to administrator via the 'update_roles' action. It authenticates, retrieves a CSRF token, and sends a crafted PUT request to modify the user's role.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Katello (Red Hat Satellite) 1.5.0-14 and earlier

Auth required

Prerequisites: Valid user credentials · Network access to the target

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/katello_satellite_priv_esc.rb