CVE-2016-3079 vulnerability in Red Hat Products
Published on April 14, 2016

Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Spacewalk and Red Hat Satellite 5.7 allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to systems/SystemEntitlements.do; (2) the label parameter to admin/multiorg/EntitlementDetails.do; or the name of a (3) snapshot tag or (4) system group in System Set Manager (SSM).

Vendor Advisory NVD

Products Associated with CVE-2016-3079

stack.watch emails you whenever new vulnerabilities are published in Red Hat Satellite or Red Hat Spacewalk Java. Just hit a watch button to start following.

Red Hat Satellite

Red Hat Spacewalk Java

Exploit Probability

EPSS

0.43%

Percentile

62.22%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-3079 vulnerability in Red Hat ProductsPublished on April 14, 2016

Products Associated with CVE-2016-3079

Exploit Probability

CVE-2016-3079 vulnerability in Red Hat Products
Published on April 14, 2016