CVE-2014-8162

XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.

Published: May 14, 2015
Updated: Apr 13, 2023
CVE: CVE-2014-8162
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
redhat / network_satellite	-	5.7.x
suse / manager	1.7	1.7.x

http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00020.html
http://rhn.redhat.com/errata/RHSA-2015-0957.html
http://www.securityfocus.com/bid/74595

Vulnerability Database

289,599

CVE-2014-8162