CVE-2013-2143

Redhat Network Satellite < 1.5.0-14 - Improper Input Validation

Title source: rule

Description

The users controller in Katello 1.5.0-14 and earlier, and Red Hat Satellite, does not check authorization for the update_roles action, which allows remote authenticated users to gain privileges by setting a user account to an administrator account.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/32515

View Code ZIP pw:eip

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/katello_satellite_priv_esc.rb

View Code ZIP pw:eip

References (4)

[Exploit] http://packetstormsecurity.com/files/125866/Katello-Red-Hat-Satellite-users-update_roles-Missing-Authorization.html

[Exploit] http://www.exploit-db.com/exploits/32515

[Third Party Advisory, VDB Entry] http://www.osvdb.org/104981

[Exploit] http://www.securityfocus.com/bid/66434

Scores

EPSS 0.6147

EPSS Percentile 98.3%

Details

CWE

CWE-20

Status published

Products (2)

redhat/network_satellite

theforeman/katello < 1.5.0-14

Published Apr 17, 2014

Tracked Since Feb 18, 2026