CVE-2016-3072 Vulnerability

Multiple SQL injection vulnerabilities in the scoped_search function in app/controllers/katello/api/v2/api_controller.rb in Katello allow remote authenticated users to execute arbitrary SQL commands via the (1) sort_by or (2) sort_order parameter. (CVSS:6.5) (Last Update:2016-06-09)

Vulnerability Details : Multiple SQL injection vulnerabilities in the scoped_search function in app/controllers/katello/api/v2/api_controller.rb in Katello allow remote authenticated users to execute arbitrary SQL commands via the (1) sort_by or (2) sort_order parameter. Publish Date : 2016-06-07 Last Update Date : 2016-06-09 - CVSS Scores & Vulnerability Types CVSS Score 6.5 Confidentiality Impact Partial(There is considerable informational disclosure.) Integrity Impact Partial(Modification of some system files or information is possible, but the attacker does not have control over what can be modified, or the scope of what the attacker can affect is limited.) Availability Impact Partial(There is reduced performance or interruptions in resource availability.) Access Complexity Low(Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. ) Authentication Single system(The vulnerability requires an attacker to be logged into the system (such as at a command line or via a desktop session or web interface).) Gained Access None Vulnerability Type(s) Execute CodeSql Injection CWE ID 89 - Products Affected By CVE-2016-3072 # Product Type Vendor Product Version Update Edition Language 1 Application Katello Katello - Version Details Vulnerabilities 2 Application Redhat Satellite 6.1 Version Details Vulnerabilities - Number Of Affected Versions By Product Vendor Product Vulnerable Versions Katello Katello 1 Redhat Satellite 1 - References For CVE-2016-3072 https://access.redhat.com/errata/RHSA-2016:1083 REDHAT RHSA-2016:1083 https://github.com/Katello/katello/pull/6051 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=1322050 CONFIRM - Vulnerability Conditions Vulnerability is valid if product versions listed below are used TOGETHER WITH(AND) Redhat Satellite 6.1 Redhat Enterprise Linux 6 Redhat Enterprise Linux 7.0

- Metasploit Modules Related To CVE-2016-3072 There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)