Stored cross-site scripting in host tab
CVE-2023-0119

5.4MEDIUM

Key Information:

Vendor: Red Hat
Status: foreman; Red Hat Satellite 6.13 for RHEL 8
Vendor: CVE Published:; 12 September 2023

Summary

A stored Cross-site scripting vulnerability was found in foreman. The Comment section in the Hosts tab has incorrect filtering of user input data. As a result of the attack, an attacker with an existing account on the system can steal another user's session, make requests on behalf of the user, and obtain user credentials.

Affected Version(s)

Red Hat Satellite 6.13 for RHEL 8 0:3.5.1.17-1.el8sat

Red Hat Satellite 6.13 for RHEL 8 0:3.5.1.17-1.el8sat

foreman 3.6.0

References

https://access.redhat.com/errata/RHSA-2023:3387

vendor-advisoryx_refsource_REDHAT

https://access.redhat.com/security/cve/CVE-2023-0119

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2159104

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Sep 12, 2023
Vulnerability Reserved
Jan 9, 2023

Collectors

NVD DatabaseMitre Database

Credit

Red Hat would like to thank Dinko Dimitrov (Onsec.io) for reporting this issue.

.