CVE-2022-4130

Published: Dec 16, 2022

Modified: Apr 14, 2025

PUBLISHED

Description

A blind site-to-site request forgery vulnerability was found in Satellite server. It is possible to trigger an external interaction to an attacker's server by modifying the Referer header in an HTTP request of specific resources in the server.

Vendor	Product	Versions
n/a	Satellite Server	affected `Satellite Server 6.9,6.10,6.11`

References

https://bugzilla.redhat.com/show_bug.cgi?id=2145254

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-4130

Description

Affected Products

References