{"containers": {"cna": {"affected": [{"product": "foreman", "vendor": "The Foreman Project", "versions": [{"status": "affected", "version": "1.13.0"}]}], "datePublic": "2016-05-12T00:00:00", "descriptions": [{"lang": "en", "value": "It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "description": "CWE-79", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2018-08-02T09:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639"}, {"name": "RHSA-2018:0336", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2018:0336"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/theforeman/foreman/pull/3523"}, {"name": "94263", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/94263"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://projects.theforeman.org/issues/15037"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2016-8639", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "foreman", "version": {"version_data": [{"version_value": "1.13.0"}]}}]}, "vendor_name": "The Foreman Project"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface."}]}, "impact": {"cvss": [[{"vectorString": "6.1/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}], [{"vectorString": "4.9/AV:N/AC:M/Au:S/C:P/I:P/A:N", "version": "2.0"}]]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-79"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639"}, {"name": "RHSA-2018:0336", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2018:0336"}, {"name": "https://github.com/theforeman/foreman/pull/3523", "refsource": "CONFIRM", "url": "https://github.com/theforeman/foreman/pull/3523"}, {"name": "94263", "refsource": "BID", "url": "http://www.securityfocus.com/bid/94263"}, {"name": "https://projects.theforeman.org/issues/15037", "refsource": "CONFIRM", "url": "https://projects.theforeman.org/issues/15037"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T02:27:41.125Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639"}, {"name": "RHSA-2018:0336", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2018:0336"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/theforeman/foreman/pull/3523"}, {"name": "94263", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/94263"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://projects.theforeman.org/issues/15037"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-8639", "datePublished": "2018-08-01T13:00:00", "dateReserved": "2016-10-12T00:00:00", "dateUpdated": "2024-08-06T02:27:41.125Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*", "matchCriteriaId": "C11647E6-560E-4814-86F7-950FDC60A66D", "versionEndExcluding": "1.13.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:satellite:6.3:*:*:*:*:*:*:*", "matchCriteriaId": "87F6E32E-6AF3-489A-AFEF-D5309E0D1779", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:satellite_capsule:6.3:*:*:*:*:*:*:*", "matchCriteriaId": "85FB21E6-FFBC-4286-959E-7418C6A356E9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface."}, {"lang": "es", "value": "Se ha detectado que Foreman en versiones anteriores a la 1.13.0 es vulnerable a Cross-Site Scripting (XSS) persistente mediante un nombre de organizaci\u00f3n o ubicaci\u00f3n. Esto podr\u00eda permitir que un atacante con privilegios para establecer el nombre de organizaci\u00f3n o ubicaci\u00f3n muestre HTML arbitrario, incluyendo c\u00f3digo de scripting en la interfaz web."}], "id": "CVE-2016-8639", "lastModified": "2023-11-07T02:36:25.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "secalert@redhat.com", "type": "Secondary"}]}, "published": "2018-08-01T13:29:00.310", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/94263"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2018:0336"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://github.com/theforeman/foreman/pull/3523"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://projects.theforeman.org/issues/15037"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-79"}], "source": "secalert@redhat.com", "type": "Secondary"}]}

{"acknowledgement": "This issue was discovered by Sanket Jagtap (Red Hat).", "affected_release": [{"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "candlepin-0:2.1.14-1.el7", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-0:1.15.6.34-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-bootloaders-redhat-0:201801241201-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-discovery-image-0:3.4.4-1", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-installer-1:1.15.6.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-proxy-0:1.15.6.4-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "foreman-selinux-0:1.15.6.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "hiera-0:1.3.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "katello-0:3.4.5-15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "katello-certs-tools-0:2.4.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "katello-client-bootstrap-0:1.5.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "katello-installer-base-0:3.4.5.26-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "katello-selinux-0:3.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "kobo-0:0.5.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-0:2.13.4.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-docker-0:2.4.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-katello-0:1.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-ostree-0:1.2.1.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-puppet-0:2.13.4-3.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "pulp-rpm-0:2.13.4.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "puppet-foreman_scap_client-0:0.3.16-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "python-zope-interface-0:4.0.5-4.el7", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "redhat-access-insights-puppet-0:0.0.9-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-foreman_scap_client-0:0.3.0-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-kafo-0:2.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-kafo_parsers-0:0.1.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-kafo_wizards-0:0.0.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_dhcp_remote_isc-0:0.0.2.1-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_discovery-0:1.0.4-3.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_discovery_image-0:1.0.9-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_dynflow-0:0.1.10-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_openscap-0:0.6.9-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_pulp-0:1.3.0-1.git.0.b5c2768.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-smart_proxy_remote_execution_ssh-0:0.1.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "rubygem-tilt-0:1.3.7-2.git.0.3b416c9.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "satellite-0:6.3.0-23.0.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "satellite-installer-0:6.3.0.12-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-bastion-0:5.1.1.4-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_bootdisk-0:10.0.2.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_discovery-0:9.1.5.3-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_docker-0:3.1.0.3-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_hooks-0:0.3.14-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_openscap-0:0.7.11-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman-redhat_access-0:2.0.13-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_remote_execution-0:1.3.7.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_remote_execution_core-0:1.0.6-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman-tasks-0:0.9.6.4-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman-tasks-core-0:0.1.8-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_templates-0:5.0.1-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_theme_satellite-0:1.0.4.16-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-foreman_virt_who_configure-0:0.1.9-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli-0:0.11.0.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_csv-0:2.3.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman-0:0.11.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_bootdisk-0:0.1.3.3-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_discovery-0:1.0.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_docker-0:0.0.6-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_openscap-0:0.1.5-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_remote_execution-0:0.0.6-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_tasks-0:0.0.12-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_virt_who_configure-0:0.0.3-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-hammer_cli_katello-0:0.11.3.5-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-katello-0:3.4.5.58-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite:6.3::el7", "package": "tfm-rubygem-smart_proxy_dynflow_core-0:0.1.10-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "candlepin-0:2.1.14-1.el7", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-0:1.15.6.34-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-bootloaders-redhat-0:201801241201-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-discovery-image-0:3.4.4-1", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-installer-1:1.15.6.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-proxy-0:1.15.6.4-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "foreman-selinux-0:1.15.6.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "hiera-0:1.3.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "katello-0:3.4.5-15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "katello-certs-tools-0:2.4.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "katello-client-bootstrap-0:1.5.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "katello-installer-base-0:3.4.5.26-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "katello-selinux-0:3.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "kobo-0:0.5.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-0:2.13.4.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-docker-0:2.4.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-katello-0:1.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-ostree-0:1.2.1.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-puppet-0:2.13.4-3.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "pulp-rpm-0:2.13.4.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "puppet-foreman_scap_client-0:0.3.16-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "python-zope-interface-0:4.0.5-4.el7", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "redhat-access-insights-puppet-0:0.0.9-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-foreman_scap_client-0:0.3.0-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-kafo-0:2.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-kafo_parsers-0:0.1.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-kafo_wizards-0:0.0.1-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_dhcp_remote_isc-0:0.0.2.1-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_discovery-0:1.0.4-3.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_discovery_image-0:1.0.9-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_dynflow-0:0.1.10-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_openscap-0:0.6.9-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_pulp-0:1.3.0-1.git.0.b5c2768.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-smart_proxy_remote_execution_ssh-0:0.1.6-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "rubygem-tilt-0:1.3.7-2.git.0.3b416c9.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "satellite-0:6.3.0-23.0.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "satellite-installer-0:6.3.0.12-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-bastion-0:5.1.1.4-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_bootdisk-0:10.0.2.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_discovery-0:9.1.5.3-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_docker-0:3.1.0.3-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_hooks-0:0.3.14-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_openscap-0:0.7.11-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman-redhat_access-0:2.0.13-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_remote_execution-0:1.3.7.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_remote_execution_core-0:1.0.6-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman-tasks-0:0.9.6.4-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman-tasks-core-0:0.1.8-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_templates-0:5.0.1-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_theme_satellite-0:1.0.4.16-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-foreman_virt_who_configure-0:0.1.9-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli-0:0.11.0.1-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_csv-0:2.3.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman-0:0.11.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.8-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_bootdisk-0:0.1.3.3-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_discovery-0:1.0.0-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_docker-0:0.0.6-2.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_openscap-0:0.1.5-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_remote_execution-0:0.0.6-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_tasks-0:0.0.12-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_foreman_virt_who_configure-0:0.0.3-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-hammer_cli_katello-0:0.11.3.5-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-katello-0:3.4.5.58-1.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}, {"advisory": "RHSA-2018:0336", "cpe": "cpe:/a:redhat:satellite_capsule:6.3::el7", "package": "tfm-rubygem-smart_proxy_dynflow_core-0:0.1.10-1.fm1_15.el7sat", "product_name": "Red Hat Satellite 6.3 for RHEL 7", "release_date": "2018-02-21T00:00:00Z"}], "bugzilla": {"description": "foreman: Stored XSS via organization/location with HTML in name", "id": "1393291", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393291"}, "csaw": false, "cvss": {"cvss_base_score": "4.9", "cvss_scoring_vector": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "status": "verified"}, "cvss3": {"cvss3_base_score": "6.1", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "status": "verified"}, "cwe": "CWE-79", "details": ["It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface.", "It was found that foreman is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface."], "name": "CVE-2016-8639", "package_state": [{"cpe": "cpe:/a:redhat:ceph_storage:1.3", "fix_state": "Will not fix", "package_name": "foreman", "product_name": "Red Hat Ceph Storage 1.3"}], "public_date": "2016-05-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-8639\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-8639"], "threat_severity": "Moderate", "upstream_fix": "foreman 1.13.0"}