Cross-Site Scripting in Red Hat Satellite
CVE-2017-12175

3.5LOW

Key Information:

Vendor: Red Hat
Status: Satellite
Vendor: CVE Published:; 26 July 2018

What is CVE-2017-12175?

Red Hat Satellite versions prior to 6.5 are susceptible to a Cross-Site Scripting vulnerability. This flaw occurs within the discovery rule feature when users input filters utilizing the autocomplete functionality. An attacker could exploit this vulnerability to inject malicious scripts into the web application, potentially compromising user data and session integrity.