CVE-2017-7470

Summary

It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.

Affected Software

VendorProductVersion RangeStatus
[UNKNOWN]spacewalk-backendn/aaffected

Weaknesses

  • CWE-863: CWE-863

ADP Enrichment

CVE Program Container

Additional References

References