Browse all 4 CVE security advisories affecting Katello. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Katello serves as a content management platform for Red Hat Satellite, enabling organizations to manage software repositories, packages, and system configurations across their infrastructure. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. While no major public incidents have been widely documented, the four CVEs on record highlight potential risks in web interfaces and API endpoints that could allow attackers to compromise systems or escalate privileges, particularly in environments with insufficient access controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2014-0183 | Red Hat Subscription Asset Manager Katello 跨站脚本漏洞 — Katello | 6.1 | - | 2020-01-02 |
| CVE-2013-4120 | Katello 资源管理错误漏洞 — Katello | 7.5 | - | 2019-12-10 |
| CVE-2013-0283 | Katello 跨站脚本漏洞 — Katello | 5.4 | - | 2019-12-05 |
| CVE-2013-2101 | Katello 跨站脚本漏洞 — Katello | 5.4 | - | 2019-12-03 |
This page lists every published CVE security advisory associated with Katello. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.