Red Hat Satellite CVE-2017-7513 Security Bypass Vulnerability

Bugtraq ID:	105149
Class:	Unknown
CVE:	CVE-2017-7513
Remote:	Yes
Local:	No
Published:	Jul 25 2018 12:00AM
Updated:	Jul 25 2018 12:00AM
Credit:	Lukáš Hellebrandt
Vulnerable:	Redhat Satellite 5
Not Vulnerable:

Red Hat Satellite CVE-2017-7513 Security Bypass Vulnerability

Red Hat Satellite is prone to a security-bypass vulnerability.

An attacker can exploit this issue to perform man-in-the-middle attacks to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks.

Red Hat Satellite CVE-2017-7513 Security Bypass Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Red Hat Satellite CVE-2017-7513 Security Bypass Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Red Hat Satellite CVE-2017-7513 Security Bypass Vulnerability

References:

• Bug 1458057 - (CVE-2017-7513) CVE-2017-7513 SAT 5: Failure to verify DB hostname (Red Hat Bugzilla)
  
• CVE-2017-7513 (Red Hat Bugzilla)
  
• Red Hat Homepage (Red Hat)