Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-4130

Опубликовано: 16 дек. 2022
Источник: nvd
CVSS3: 4.5
EPSS Низкий

Описание

A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker's server by modifying the Referer header in an HTTP request of specific resources in the server.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:satellite:6.9:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:6.10:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:6.11:*:*:*:*:*:*:*

EPSS

Процентиль: 31%
0.00121
Низкий

4.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

redhat логотип

CVE-2022-4130

CVSS3: 3.5
redhat
около 3 лет назад

A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker's server by modifying the Referer header in an HTTP request of specific resources in the server.

github логотип

GHSA-qq54-c3p8-j5hg

CVSS3: 7.5
github
около 3 лет назад

A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker's server by modifying the Referer header in an HTTP request of specific resources in the server.

EPSS

Процентиль: 31%
0.00121
Низкий

4.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo