CVE-2011-1594— Spacewalk: spacewalk: open redirect vulnerability enables phishing attacks via url parameter
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2011-1594
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Spacewalk: spacewalk: open redirect vulnerability enables phishing attacks via url parameter
Source: NVD (National Vulnerability Database)
Vulnerability Description
A flaw was found in Spacewalk, as used in Red Hat Network Satellite. This open redirect vulnerability allows remote attackers to redirect users to arbitrary web sites by manipulating a URL in the url_bounce parameter. This can enable attackers to conduct phishing attacks, potentially leading to unauthorized information disclosure or credential theft.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Red Hat Spacewalk 'url_bounce'跨站请求伪造漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Red Hat Spacewalk是美国红帽(Red Hat)公司的一套基于红帽网络卫星(一套系统管理平台)而开发的开源Linux系统管理解决方案。该方案提供统计系统信息、安装和更新软件、收集和分发自定义软件包等功能。 Red Hat Network (RHN) Satellite中使用的Spacewalk 1.6版本中存在开放重定向漏洞。远程攻击者可借助URL中特制的‘url_bounce’参数利用该漏洞重定向用户的到任意网站,进而实施钓鱼攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 6 | - | cpe:/o:redhat:enterprise_linux:6 | |
| Red Hat | Red Hat Enterprise Linux 6 | - | cpe:/o:redhat:enterprise_linux:6 | |
| Red Hat | Red Hat Enterprise Linux 6 | - | cpe:/o:redhat:enterprise_linux:6 | |
| Red Hat | Red Hat Enterprise Linux 7 | - | cpe:/o:redhat:enterprise_linux:7 | |
| Red Hat | Red Hat Enterprise Linux 7 | - | cpe:/o:redhat:enterprise_linux:7 |
II. Public POCs for CVE-2011-1594
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2011-1594
请登录查看更多情报信息。
- https://bugzilla.redhat.com/show_bug.cgi?id=672167x_refsource_CONFIRM
- https://www.redhat.com/archives/spacewalk-announce-list/2011-December/msg00000.htmlmailing-listx_refsource_MLIST
- https://nvd.nist.gov/vuln/detail/CVE-2011-1594
Same Patch Batch · Red Hat · 2014-02-05 · 5 CVEs total
| CVE-2011-2920 | 5.5 MEDIUM | Spacewalk: spacewalk: cross-site scripting vulnerability allows arbitrary web script execu |
| CVE-2011-2927 | 5.4 MEDIUM | Spacewalk: spacewalk and red hat network satellite: cross-site scripting vulnerability via |
| CVE-2011-3344 | 5.4 MEDIUM | Spacewalk: spacewalk: cross-site scripting via uri in lookup login/password form |
| CVE-2012-0059 | 4.9 MEDIUM | Spacewalk-backend: spacewalk-backend: information disclosure via cleartext passwords in er |
IV. Related Vulnerabilities
Same product: Red Hat Enterprise Linux 6
- CVE-2025-66286
Webkitgtk: authorization bypass through webpage::send-reques - CVE-2026-6384
Gimp: gimp: arbitrary code execution or denial of service vi - CVE-2026-40919
Gimp: gimp: denial of service via specially crafted seattle - CVE-2026-40918
Gimp: gimp: denial of service via crafted pvr image file - CVE-2026-40917
Gimp: gimp: application crashes or information disclosure vi
Same vendor: Red Hat
- CVE-2026-42011
Gnutls: gnutls: security bypass due to incorrect name constr - CVE-2026-42010
Gnutls: gnutls: authentication bypass via nul character in u - CVE-2026-6420
Keylime: keylime: security bypass due to hardcoded tpm quote - CVE-2026-34956
Openvswitch: open vswitch: denial of service via malformed f - CVE-2026-34002
Xorg: xwayland: x.org x server: information disclosure or de
Same weakness: CWE-601
- CVE-2026-42350
Kargo: Open Redirect in UI OIDC Login Flow via redirectTo Qu - CVE-2026-42195
Unvalidated gitlab URL parameter redirects OAuth authorize s - CVE-2026-3318
Multiple vulnerabilities in Cradle e-commerce - CVE-2026-42259
Saltcorn: Open Redirect in `POST /auth/login` due to incompl - CVE-2026-6795
Open Redirect in DivvyDrive Information Technologies' DivvyD
V. Comments for CVE-2011-1594
No comments yet