CVE-2015-7518

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 26-11-2015 01:00

Last modified: - 26-11-2015 01:00

Total changes: - 59

Description

CVE-2015-7518 foreman: Stored XSS vulnerability in smart class parameters/variables

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:S/C:N/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

3.5

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=candlepin-0 AND versionEndExcluding=0.9.49.11-1.el7

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=foreman-0 AND versionEndExcluding=1.7.2.53-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=katello-installer-base-0 AND versionEndExcluding=2.3.25-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=pulp-0 AND versionEndExcluding=2.6.0.20-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=pulp-puppet-0 AND versionEndExcluding=2.6.0.20-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=pulp-rpm-0 AND versionEndExcluding=2.6.0.20-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=python-kombu-1 AND versionEndExcluding=3.0.24-11.pulp.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-fog-0 AND versionEndExcluding=1.24.1-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-katello-0 AND versionEndExcluding=2.2.0.83-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=rubygem-hammer_cli_katello-0 AND versionEndExcluding=0.0.7.21-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=foreman AND version=

vendor=Red Hat Enterprise Linux AND product=openstack-installer AND version=5

AND

product=foreman AND version=

vendor=Red Hat Enterprise Linux AND product=openstack-installer AND version=6

Reference

Keywords

REDHAT

CVE-2015-7518

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.