Redhat » Satellite (Seite 19)

8.8

CVE-2016-9842

EPSS 10.91%
Published 23.05.2017 04:29:01
Last modified 20.04.2025 01:37:25

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

9.8

CVE-2016-9843

EPSS 9.18%
Published 23.05.2017 04:29:01
Last modified 20.04.2025 01:37:25

The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

3.1

CVE-2017-3539

EPSS 0.73%
Published 24.04.2017 19:59:04
Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121. Difficult to exploit vulnerability allows unauthen...

4.3

CVE-2017-3544

EPSS 0.38%
Published 24.04.2017 19:59:04
Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit...

4.3

CVE-2017-3533

EPSS 0.65%
Published 24.04.2017 19:59:03
Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit...

6.1

CVE-2016-2104

EPSS 0.3%
Published 13.04.2017 14:59:01
Last modified 20.04.2025 01:37:25

Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Satellite 5 allow remote attackers to inject arbitrary web script or HTML via (1) the label parameter to admin/BunchDetail.do; (2) the package_name, (3) search_subscribed_channels, or (4)...

9.8

CVE-2017-5929

EPSS 16.01%
Published 13.03.2017 06:59:00
Last modified 20.04.2025 01:37:25

QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.

7.1

CVE-2016-10165

EPSS 0.87%
Published 03.02.2017 19:59:00
Last modified 20.04.2025 01:37:25

The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.

6.1

CVE-2016-3097

EPSS 0.21%
Published 05.08.2016 14:59:05
Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in spacewalk-java in Red Hat Satellite 5.7 allows remote attackers to inject arbitrary web script or HTML via a group name, related to viewing snapshot data.

6.1

CVE-2016-3080

EPSS 0.19%
Published 05.08.2016 14:59:02
Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in spacewalk-java in Red Hat Satellite 5.7 allows remote attackers to inject arbitrary web script or HTML via the (1) RHNMD User or (2) Filesystem parameters, related to display of monitoring probes.

Redhat ≫ Satellite