← Volver a CVEs
CVE-2019-10137
N/ADescripcion
A path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy's filesystem, or can execute arbitrary code in the context of the httpd process.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado7/2/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
redhat:satelliteredhat:spacewalk
Debilidades (CWE)
CWE-22CWE-22
Referencias
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10137(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10137(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.