CVE-2014-8162
Summary
| CVE | CVE-2014-8162 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2015-05-14 14:59:00 UTC |
| Updated | 2023-02-13 00:44:00 UTC |
| Description | XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 1187339 – (CVE-2014-8162) CVE-2014-8162 Satellite5: RPC API XML External Entities file disclosure | MISC | bugzilla.redhat.com | |
| Red Hat Customer Portal | REDHAT | rhn.redhat.com | Vendor Advisory |
| [security-announce] SUSE-SU-2015:0928-1: important: Security update for | SUSE | lists.opensuse.org | |
| CVE-2014-8162 - Red Hat Customer Portal | MISC | access.redhat.com | |
| Red Hat Customer Portal | MISC | access.redhat.com | |
| Red Hat Satellite and Spacewalk XML External Entity Information Disclosure Vulnerability | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.