Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-4130

A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker's server by modifying the Referer header in an HTTP request of specific resources in the server.

  • Published: Dec 16, 2022
  • Updated: May 10, 2024
  • CVE: CVE-2022-4130
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.5
  • AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N

No CWE or OWASP classifications available.

Software From Fixed in
redhat / satellite 6.11 6.11.x
redhat / satellite 6.9 6.9.x
redhat / satellite 6.10 6.10.x