Redhat - Satellite With Embedded Oracle CVE - OpenCVE

Filtered by vendor Redhat Subscriptions

Filtered by product Satellite With Embedded Oracle Subscriptions

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2011-3544	4 Canonical, Oracle, Redhat and 1 more	9 Ubuntu Linux, Jdk, Jre and 6 more	2024-08-06	9.8 Critical
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
CVE-2012-1717	5 Linux, Oracle, Redhat and 2 more	23 Linux Kernel, Jdk, Jre and 20 more	2024-08-06	N/A
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.
CVE-2013-4480	2 Redhat, Suse	5 Network Satellite, Satellite, Satellite With Embedded Oracle and 2 more	2024-08-06	N/A
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
CVE-2014-3654	2 Redhat, Suse	7 Network Satellite, Satellite, Satellite With Embedded Oracle and 4 more	2024-08-06	N/A
Multiple cross-site scripting (XSS) vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) kickstart/cobbler/CustomSnippetList.do, (2) channels/software/Entitlements.do, or (3) admin/multiorg/OrgUsers.do.
CVE-2014-3595	2 Redhat, Suse	7 Network Satellite, Satellite, Satellite With Embedded Oracle and 4 more	2024-08-06	N/A
Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 through 5.6 allows remote attackers to inject arbitrary web script or HTML via a crafted request that is not properly handled when logging.

Page 1 of 1.