6.4
CVE-2009-0788
- EPSS 1.71%
- Veröffentlicht 18.04.2011 17:55:00
- Zuletzt bearbeitet 16.06.2026 23:05:48
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Network Satellite Server Version5.3
Redhat ≫ Network Satellite Server Version5.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.71% | 0.743 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:P/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
http://secunia.com/advisories/44150
http://www.redhat.com/support/errata/RHSA-2011-0434.html
http://www.securityfocus.com/bid/47316
http://www.securitytracker.com/id?1025316
http://www.vupen.com/english/advisories/2011/0967
https://bugzilla.redhat.com/show_bug.cgi?id=491365
https://exchange.xforce.ibmcloud.com/vulnerabilities/66691