Arbitrary Web Script Injection Vulnerability in Red Hat Satellite 5.7

Arbitrary Web Script Injection Vulnerability in Red Hat Satellite 5.7

CVE-2016-3080 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in spacewalk-java in Red Hat Satellite 5.7 allows remote attackers to inject arbitrary web script or HTML via the (1) RHNMD User or (2) Filesystem parameters, related to display of monitoring probes.

Learn more about our Web App Pen Testing.