Back to bug 1320942
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-03-24 10:39:25 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-03-24 10:39:25 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-03-24 10:39:58 UTC | Depends On | 1320461 | |
| Adam Mariš | 2016-03-24 10:41:46 UTC | Blocks | 1320949 | |
| Kurt Seifried | 2016-03-29 16:48:55 UTC | Alias | CVE-2016-3080 | |
| Kurt Seifried | 2016-03-29 16:48:57 UTC | Summary | EMBARGOED spacewalk-monitoring: XSS issue in monitoring probe | EMBARGOED CVE-2016-3080 spacewalk-monitoring: XSS issue in monitoring probe |
| Kurt Seifried | 2016-03-29 18:42:47 UTC | Whiteboard | impact=moderate,public=no,reported=20160323,source=redhat,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-79,rhn_satellite_5/spacewalk-java=affected,rhn_satellite_5/spacewalk-monitoring=affected | impact=moderate,public=20160329,reported=20160323,source=redhat,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-79,rhn_satellite_5/spacewalk-java=affected,rhn_satellite_5/spacewalk-monitoring=affected |
| Kurt Seifried | 2016-03-29 18:45:23 UTC | Summary | EMBARGOED CVE-2016-3080 spacewalk-monitoring: XSS issue in monitoring probe | CVE-2016-3080 spacewalk-monitoring: XSS issue in monitoring probe |
| Kurt Seifried | 2016-03-29 18:45:25 UTC | Group | security, qe_staff | |
| Kurt Seifried | 2016-04-04 17:24:39 UTC | CC | meissner, thomas | |
| Kurt Seifried | 2016-06-18 00:45:18 UTC | Doc Text | A stored cross-site scripting (XSS) flaw was found in the way spacewalk-java displayed monitoring probes. An attacker can embed HTML and Javascript in the values for RHNMD User or Filesystem parameters in Satellite, allowing them to inject malicious content into the web page that is then displayed with that probe data. | |
| Kurt Seifried | 2016-07-14 19:24:53 UTC | Whiteboard | impact=moderate,public=20160329,reported=20160323,source=redhat,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-79,rhn_satellite_5/spacewalk-java=affected,rhn_satellite_5/spacewalk-monitoring=affected | impact=moderate,public=20160329,reported=20160323,source=redhat,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N,cwe=CWE-79,rhn_satellite_5/spacewalk-java=affected,rhn_satellite_5/spacewalk-monitoring=affected |
| Tomas Hoger | 2016-07-26 09:26:55 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-07-26 05:26:55 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:46:44 UTC | Whiteboard | impact=moderate,public=20160329,reported=20160323,source=redhat,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N,cwe=CWE-79,rhn_satellite_5/spacewalk-java=affected,rhn_satellite_5/spacewalk-monitoring=affected |
Back to bug 1320942