Bug 1471262 (CVE-2017-7538)

Summary:	CVE-2017-7538 Satellite 5: organization name allows XSS
Product:	[Other] Security Response	Reporter:	Kurt Seifried <kseifried>
Component:	vulnerability	Assignee:	Red Hat Product Security <security-response-team>
Status:	CLOSED ERRATA	QA Contact:
Severity:	medium	Docs Contact:
Priority:	medium
Version:	unspecified	CC:	bkearney, meissner, parikapain1353, security-response-team, taw, thomas, tlestach
Target Milestone:	---	Keywords:	Security
Target Release:	---
Hardware:	All
OS:	Linux
Whiteboard:
Fixed In Version:	rhn_satellite 5.8	Doc Type:	If docs needed, set a value
Doc Text:	A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.	Story Points:	---
Clone Of:		Environment:
Last Closed:	2017-09-14 09:12:54 UTC	Type:	---
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:	1460208, 1471263
Bug Blocks:	1471265

Description Kurt Seifried 2017-07-14 20:42:29 UTC

Ales Dujicek of Red Hat reports:
The organization name is used in a variety of web pages without being sanitized for HTML special characters, resulting in a stored cross site scripting (XSS) vulnerability.

Comment 1 Kurt Seifried 2017-07-14 20:42:40 UTC

Acknowledgments:

Name: Ales Dujicek (Red Hat)

Comment 4 errata-xmlrpc 2017-09-06 12:28:42 UTC

This issue has been addressed in the following products:

  Red Hat Satellite 5.8
  Red Hat Satellite 5.8 ELS

Via RHSA-2017:2645 https://access.redhat.com/errata/RHSA-2017:2645

Comment 5 Tomas Lestach 2017-09-14 08:16:17 UTC

Can this BZ be closed? The associated erratum went live on 2017-09-06

Comment 6 Andrej Nemec 2017-09-14 09:12:54 UTC

(In reply to Tomas Lestach from comment #5)
> Can this BZ be closed? The associated erratum went live on 2017-09-06

This is fine to close, thanks!

Comment 7 Clyde Rose 2024-11-04 07:21:04 UTC Comment hidden (spam)

This problem has been resolved in the items that are listed below:

https://access.redhat.com/errata/RHSA-2017:2645 https://melon-sandbox.com
The display of an organization's name in Satellite 5 has a cross-site scripting (XSS) vulnerability. Anyone with the ability to rebrand an organization might take advantage of this security hole to launch cross-site scripting (XSS) attacks on other users of Satellite.