CPE-D23C4B70-E59A-424D-A151-926830EA32E9 Detail

CPE Details

Foreman Katello 3.0.0 Release Candidate 1

Vendor

theforeman

Product

katello

Version

3.0.0

Created

2019-02-06
15h21 +00:00

Modified

2019-02-06
15h21 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:theforeman:katello:3.0.0:rc1::::::

Informations

Vendor

theforeman

Product

katello

Version

3.0.0

Update

rc1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2018-16887	2019-01-13 01h00 +00:00	A cross-site scripting (XSS) flaw was found in the katello component of Satellite. An attacker with privilege to create/edit organizations and locations is able to execute a XSS attacks against other users through the Subscriptions or the Red Hat Repositories wizards. This can possibly lead to malicious code execution and extraction of the anti-CSRF token of higher privileged users. Versions before 3.9.0 are vulnerable.	5.4	Medium
CVE-2016-9595	2018-07-27 16h00 +00:00	A flaw was found in katello-debug before 3.4.0 where certain scripts and log files used insecure temporary files. A local user could exploit this flaw to conduct a symbolic-link attack, allowing them to overwrite the contents of arbitrary files.	7.3	High

Foreman Katello 3.0.0 Release Candidate 1

CPE Details

CPE Name: cpe:2.3:a:theforeman:katello:3.0.0:rc1:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:theforeman:katello:3.0.0:rc1::::::