CVE-2015-0284 vulnerability in Red Hat Products
Published on April 14, 2016

Cross-site scripting (XSS) vulnerability in spacewalk-java in Spacewalk and Red Hat Satellite 5.7 allows remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the XMLRPC API, involving user details. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-7811.

Vendor Advisory NVD

Products Associated with CVE-2015-0284

stack.watch emails you whenever new vulnerabilities are published in Red Hat Spacewalk Java or Red Hat Satellite. Just hit a watch button to start following.

Red Hat Spacewalk Java

Red Hat Satellite

Exploit Probability

EPSS

0.27%

Percentile

50.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-0284 vulnerability in Red Hat ProductsPublished on April 14, 2016

Products Associated with CVE-2015-0284

Exploit Probability

CVE-2015-0284 vulnerability in Red Hat Products
Published on April 14, 2016