Redhat

Satellite

223 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2017-10689

  • EPSS 0.09%
  • Veröffentlicht 09.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:06:18

In previous versions of Puppet Agent it was possible to install a module with world writable permissions. Puppet Agent 5.3.4 and 1.10.10 included a fix to this vulnerability.

6.5

CVE-2017-10690

  • EPSS 0.19%
  • Veröffentlicht 09.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:06:18

In previous versions of Puppet Agent it was possible for the agent to retrieve facts from an environment that it was not classified to retrieve from. This was resolved in Puppet Agent 5.3.4, included in Puppet Enterprise 2017.3.4

9.8

CVE-2017-15095

  • EPSS 9.26%
  • Veröffentlicht 06.02.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 03:14:03

A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMappe...

4.3

CVE-2018-2663

  • EPSS 0.11%
  • Veröffentlicht 18.01.2018 02:29:22
  • Zuletzt bearbeitet 21.11.2024 04:04:11

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploit...

4.3

CVE-2018-2677

  • EPSS 0.11%
  • Veröffentlicht 18.01.2018 02:29:22
  • Zuletzt bearbeitet 21.11.2024 04:04:13

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthen...

4.3

CVE-2018-2678

  • EPSS 0.11%
  • Veröffentlicht 18.01.2018 02:29:22
  • Zuletzt bearbeitet 21.11.2024 04:04:13

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable ...

5.3

CVE-2018-2657

  • EPSS 0.51%
  • Veröffentlicht 18.01.2018 02:29:21
  • Zuletzt bearbeitet 21.11.2024 04:04:10

Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker wi...

7.5

CVE-2018-2627

  • EPSS 0.51%
  • Veröffentlicht 18.01.2018 02:29:20
  • Zuletzt bearbeitet 06.05.2025 15:15:55

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure ...

5.3

CVE-2018-2629

  • EPSS 0.47%
  • Veröffentlicht 18.01.2018 02:29:20
  • Zuletzt bearbeitet 21.11.2024 04:04:05

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploi...

8.3

CVE-2018-2633

  • EPSS 0.83%
  • Veröffentlicht 18.01.2018 02:29:20
  • Zuletzt bearbeitet 21.11.2024 04:04:06

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploi...