This page lists publicly disclosed CVE vulnerabilities affecting redhat network_satellite_server (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-4139 | A flaw was found in Spacewalk Java site packages. This cross-site request forgery (CSRF) vulnerability allows a remote attacker to hijack the authentication of arbitrary users. This can lead to unauthorized actions, including disabling user accounts, adding new user accounts, or escalating privileges by modifying existing user accounts to have administrator access. | [email protected] | 6.8 | 0.81% | 2011-07-26 | 2026-06-16 |
| CVE-2009-0788 | Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors. | [email protected] | 6.4 | 1.71% | 2011-04-18 | 2026-06-16 |
| CVE-2011-0718 | Red Hat Network (RHN) Satellite Server 5.4 does not use a time delay after a failed login attempt, which makes it easier for remote attackers to conduct brute force password guessing attacks. | [email protected] | 5.8 | 1.26% | 2011-02-25 | 2026-06-16 |
| CVE-2011-0717 | Session fixation vulnerability in Red Hat Network (RHN) Satellite Server 5.4 allows remote attackers to hijack web sessions via unspecified vectors related to Spacewalk. | [email protected] | 5.8 | 2.02% | 2011-02-25 | 2026-06-16 |