HIGH 8.8 RubyGems
GHSA-527r-mfmj-prqf · CVE-2016-3072 Katello SQL Injection vulnerabilities
Modified: 11/8/2023
package
RubyGems / katello
pkg:rubygems/katello
CRITICAL 9.8 RubyGems
GHSA-5xv2-q475-rwrh · CVE-2012-3503 Katello uses hard coded credential
Modified: 4/11/2024
MEDIUM 4.3 RubyGems
GHSA-c43c-rf7g-5xpg · CVE-2026-12515 katello: missing repository authorization in content_uploads exposes cross-product content existence
Modified: 6/18/2026
MEDIUM 4.3 RubyGems
GHSA-cpv6-pfq6-j2v7 · CVE-2017-2662 katello Improper Privilege Management vulnerability
Modified: 11/8/2023
MEDIUM 5.4 RubyGems
GHSA-fwj4-6wgp-mpxm · CVE-2026-4324 Katello: Denial of Service and potential information disclosure via SQL injection
Modified: 6/1/2026
MEDIUM 4.3 RubyGems
GHSA-jx5v-788g-qw58 · CVE-2018-14623 katello SQL Injection vulnerability
Modified: 11/8/2023
LOW 2.7 RubyGems
GHSA-m4wh-848j-9w2r · CVE-2019-14825 Katello cleartext password storage issue
Modified: 11/8/2023
MEDIUM 5.4 RubyGems
GHSA-mhhc-r88h-2qrm · CVE-2018-16887 katello Cross-site Scripting vulnerability
Modified: 11/8/2023