RHEL 9Satellite 6.18.0 新版本重要(RHSA-2025:19721)
high Nessus 插件 ID 272301
语言:
简介
远程 Red Hat 主机缺少安全更新。描述
远程 Redhat Enterprise Linux 9 主机上安装的程序包受到 RHSA-2025:19721 公告中提及的一个漏洞影响。Red Hat Satellite 是一个系统管理解决方案,它使组织能够配置和维护其系统,而无需为自身服务器或其他客户端系统提供公共 Internet 访问。该解决方案可执行预定义标准操作环境的设置和配置管理。
安全修复:
* foreman通过 ct_location 和 fcct_location 参数进行的 OS 命令注入 (CVE-2025-10622)
建议 Red Hat Satellite 用户升级至这些更新后的程序包,其中修复了这些问题。
Tenable 已直接从 Red Hat Enterprise Linux 安全公告中提取上述描述块。
请注意,Nessus 尚未测试此问题,而是只依据应用程序自我报告的版本号进行判断。
解决方案
更新受影响的程序包。另见
https://access.redhat.com/security/updates/classification/#important
http://www.nessus.org/u?1a317a03
https://bugzilla.redhat.com/show_bug.cgi?id=2396020
https://issues.redhat.com/browse/SAT-11875
https://issues.redhat.com/browse/SAT-15682
https://issues.redhat.com/browse/SAT-18422
https://issues.redhat.com/browse/SAT-18815
https://issues.redhat.com/browse/SAT-20253
https://issues.redhat.com/browse/SAT-20700
https://issues.redhat.com/browse/SAT-21126
https://issues.redhat.com/browse/SAT-21129
https://issues.redhat.com/browse/SAT-21543
https://issues.redhat.com/browse/SAT-21841
https://issues.redhat.com/browse/SAT-22589
https://issues.redhat.com/browse/SAT-22655
https://issues.redhat.com/browse/SAT-22998
https://issues.redhat.com/browse/SAT-23121
https://issues.redhat.com/browse/SAT-23671
https://issues.redhat.com/browse/SAT-24007
https://issues.redhat.com/browse/SAT-24175
https://issues.redhat.com/browse/SAT-25184
https://issues.redhat.com/browse/SAT-25333
https://issues.redhat.com/browse/SAT-25438
https://issues.redhat.com/browse/SAT-25439
https://issues.redhat.com/browse/SAT-25805
https://issues.redhat.com/browse/SAT-25968
https://issues.redhat.com/browse/SAT-26013
https://issues.redhat.com/browse/SAT-26487
https://issues.redhat.com/browse/SAT-26559
https://issues.redhat.com/browse/SAT-26877
https://issues.redhat.com/browse/SAT-26905
https://issues.redhat.com/browse/SAT-27377
https://issues.redhat.com/browse/SAT-27474
https://issues.redhat.com/browse/SAT-27937
https://issues.redhat.com/browse/SAT-28085
https://issues.redhat.com/browse/SAT-28214
https://issues.redhat.com/browse/SAT-28460
https://issues.redhat.com/browse/SAT-28485
https://issues.redhat.com/browse/SAT-28495
https://issues.redhat.com/browse/SAT-28694
https://issues.redhat.com/browse/SAT-29428
https://issues.redhat.com/browse/SAT-29574
https://issues.redhat.com/browse/SAT-29736
https://issues.redhat.com/browse/SAT-29785
https://issues.redhat.com/browse/SAT-29942
https://issues.redhat.com/browse/SAT-30006
https://issues.redhat.com/browse/SAT-30122
https://issues.redhat.com/browse/SAT-30123
https://issues.redhat.com/browse/SAT-30221
https://issues.redhat.com/browse/SAT-30370
https://issues.redhat.com/browse/SAT-30471
https://issues.redhat.com/browse/SAT-30594
https://issues.redhat.com/browse/SAT-30838
https://issues.redhat.com/browse/SAT-30896
https://issues.redhat.com/browse/SAT-30897
https://issues.redhat.com/browse/SAT-30899
https://issues.redhat.com/browse/SAT-30900
https://issues.redhat.com/browse/SAT-30901
https://issues.redhat.com/browse/SAT-30902
https://issues.redhat.com/browse/SAT-30903
https://issues.redhat.com/browse/SAT-30904
https://issues.redhat.com/browse/SAT-30909
https://issues.redhat.com/browse/SAT-30915
https://issues.redhat.com/browse/SAT-30917
https://issues.redhat.com/browse/SAT-30976
https://issues.redhat.com/browse/SAT-30999
https://issues.redhat.com/browse/SAT-31026
https://issues.redhat.com/browse/SAT-31028
https://issues.redhat.com/browse/SAT-31029
https://issues.redhat.com/browse/SAT-31030
https://issues.redhat.com/browse/SAT-31104
https://issues.redhat.com/browse/SAT-31137
https://issues.redhat.com/browse/SAT-31185
https://issues.redhat.com/browse/SAT-31194
https://issues.redhat.com/browse/SAT-31195
https://issues.redhat.com/browse/SAT-31224
https://issues.redhat.com/browse/SAT-31226
https://issues.redhat.com/browse/SAT-31251
https://issues.redhat.com/browse/SAT-31357
https://issues.redhat.com/browse/SAT-31360
https://issues.redhat.com/browse/SAT-31388
https://issues.redhat.com/browse/SAT-31392
https://issues.redhat.com/browse/SAT-31397
https://issues.redhat.com/browse/SAT-31400
https://issues.redhat.com/browse/SAT-31411
https://issues.redhat.com/browse/SAT-31421
https://issues.redhat.com/browse/SAT-31424
https://issues.redhat.com/browse/SAT-31449
https://issues.redhat.com/browse/SAT-31467
https://issues.redhat.com/browse/SAT-31561
https://issues.redhat.com/browse/SAT-31578
https://issues.redhat.com/browse/SAT-31580
https://issues.redhat.com/browse/SAT-31655
https://issues.redhat.com/browse/SAT-31763
https://issues.redhat.com/browse/SAT-31806
https://issues.redhat.com/browse/SAT-31807
https://issues.redhat.com/browse/SAT-31827
https://issues.redhat.com/browse/SAT-31842
https://issues.redhat.com/browse/SAT-31859
https://issues.redhat.com/browse/SAT-31947
https://issues.redhat.com/browse/SAT-31966
https://issues.redhat.com/browse/SAT-36031
https://issues.redhat.com/browse/SAT-36032
https://issues.redhat.com/browse/SAT-36033
https://issues.redhat.com/browse/SAT-36046
https://issues.redhat.com/browse/SAT-36047
https://issues.redhat.com/browse/SAT-36048
https://issues.redhat.com/browse/SAT-36050
https://issues.redhat.com/browse/SAT-36051
https://issues.redhat.com/browse/SAT-36061
https://issues.redhat.com/browse/SAT-36063
https://issues.redhat.com/browse/SAT-36064
https://issues.redhat.com/browse/SAT-36154
https://issues.redhat.com/browse/SAT-36158
https://issues.redhat.com/browse/SAT-36218
https://issues.redhat.com/browse/SAT-36219
https://issues.redhat.com/browse/SAT-36234
https://issues.redhat.com/browse/SAT-36259
https://issues.redhat.com/browse/SAT-36284
https://issues.redhat.com/browse/SAT-36322
https://issues.redhat.com/browse/SAT-36363
https://issues.redhat.com/browse/SAT-36379
https://issues.redhat.com/browse/SAT-36442
https://issues.redhat.com/browse/SAT-36515
https://issues.redhat.com/browse/SAT-36518
https://issues.redhat.com/browse/SAT-36532
https://issues.redhat.com/browse/SAT-36545
https://issues.redhat.com/browse/SAT-36721
https://issues.redhat.com/browse/SAT-36743
https://issues.redhat.com/browse/SAT-36779
https://issues.redhat.com/browse/SAT-36783
https://issues.redhat.com/browse/SAT-36784
https://issues.redhat.com/browse/SAT-37075
https://issues.redhat.com/browse/SAT-37076
https://issues.redhat.com/browse/SAT-37144
https://issues.redhat.com/browse/SAT-37154
https://issues.redhat.com/browse/SAT-37160
https://issues.redhat.com/browse/SAT-37282
https://issues.redhat.com/browse/SAT-37300
https://issues.redhat.com/browse/SAT-37341
https://issues.redhat.com/browse/SAT-37345
https://issues.redhat.com/browse/SAT-37358
https://issues.redhat.com/browse/SAT-37361
https://issues.redhat.com/browse/SAT-37365
https://issues.redhat.com/browse/SAT-37390
https://issues.redhat.com/browse/SAT-37393
https://issues.redhat.com/browse/SAT-37394
https://issues.redhat.com/browse/SAT-37395
https://issues.redhat.com/browse/SAT-37634
https://issues.redhat.com/browse/SAT-37636
https://issues.redhat.com/browse/SAT-37641
https://issues.redhat.com/browse/SAT-37669
https://issues.redhat.com/browse/SAT-37671
https://issues.redhat.com/browse/SAT-37676
https://issues.redhat.com/browse/SAT-37809
https://issues.redhat.com/browse/SAT-37810
https://issues.redhat.com/browse/SAT-37817
https://issues.redhat.com/browse/SAT-37928
https://issues.redhat.com/browse/SAT-38105
https://issues.redhat.com/browse/SAT-38185
https://issues.redhat.com/browse/SAT-38347
https://issues.redhat.com/browse/SAT-38691
https://issues.redhat.com/browse/SAT-38707
https://issues.redhat.com/browse/SAT-38769
https://issues.redhat.com/browse/SAT-39135
https://issues.redhat.com/browse/SAT-39180
http://www.nessus.org/u?39120e99
https://access.redhat.com/errata/RHSA-2025:19721
https://issues.redhat.com/browse/SAT-33258
https://issues.redhat.com/browse/SAT-33259
https://issues.redhat.com/browse/SAT-33260
https://issues.redhat.com/browse/SAT-33261
https://issues.redhat.com/browse/SAT-33306
https://issues.redhat.com/browse/SAT-33371
https://issues.redhat.com/browse/SAT-33407
https://issues.redhat.com/browse/SAT-33412
https://issues.redhat.com/browse/SAT-33413
https://issues.redhat.com/browse/SAT-33414
https://issues.redhat.com/browse/SAT-33455
https://issues.redhat.com/browse/SAT-33475
https://issues.redhat.com/browse/SAT-33496
https://issues.redhat.com/browse/SAT-33501
https://issues.redhat.com/browse/SAT-33817
https://issues.redhat.com/browse/SAT-34021
https://issues.redhat.com/browse/SAT-34023
https://issues.redhat.com/browse/SAT-34055
https://issues.redhat.com/browse/SAT-34089
https://issues.redhat.com/browse/SAT-34090
https://issues.redhat.com/browse/SAT-34092
https://issues.redhat.com/browse/SAT-34133
https://issues.redhat.com/browse/SAT-34146
https://issues.redhat.com/browse/SAT-34147
https://issues.redhat.com/browse/SAT-34224
https://issues.redhat.com/browse/SAT-34231
https://issues.redhat.com/browse/SAT-34243
https://issues.redhat.com/browse/SAT-34258
https://issues.redhat.com/browse/SAT-34271
https://issues.redhat.com/browse/SAT-34301
https://issues.redhat.com/browse/SAT-34510
https://issues.redhat.com/browse/SAT-34546
https://issues.redhat.com/browse/SAT-34564
https://issues.redhat.com/browse/SAT-34592
https://issues.redhat.com/browse/SAT-34621
https://issues.redhat.com/browse/SAT-34649
https://issues.redhat.com/browse/SAT-34713
https://issues.redhat.com/browse/SAT-34777
https://issues.redhat.com/browse/SAT-34778
https://issues.redhat.com/browse/SAT-34857
https://issues.redhat.com/browse/SAT-34926
https://issues.redhat.com/browse/SAT-34977
https://issues.redhat.com/browse/SAT-34995
https://issues.redhat.com/browse/SAT-35160
https://issues.redhat.com/browse/SAT-35208
https://issues.redhat.com/browse/SAT-35219
https://issues.redhat.com/browse/SAT-35228
https://issues.redhat.com/browse/SAT-35235
https://issues.redhat.com/browse/SAT-35244
https://issues.redhat.com/browse/SAT-35248
https://issues.redhat.com/browse/SAT-35249
https://issues.redhat.com/browse/SAT-35282
https://issues.redhat.com/browse/SAT-35290
https://issues.redhat.com/browse/SAT-35293
https://issues.redhat.com/browse/SAT-35303
https://issues.redhat.com/browse/SAT-35304
https://issues.redhat.com/browse/SAT-35327
https://issues.redhat.com/browse/SAT-35343
https://issues.redhat.com/browse/SAT-35395
https://issues.redhat.com/browse/SAT-35461
https://issues.redhat.com/browse/SAT-35489
https://issues.redhat.com/browse/SAT-35513
https://issues.redhat.com/browse/SAT-35628
https://issues.redhat.com/browse/SAT-35651
https://issues.redhat.com/browse/SAT-35722
https://issues.redhat.com/browse/SAT-35868
https://issues.redhat.com/browse/SAT-35876
https://issues.redhat.com/browse/SAT-35909
https://issues.redhat.com/browse/SAT-35922
https://issues.redhat.com/browse/SAT-35946
https://issues.redhat.com/browse/SAT-35983
https://issues.redhat.com/browse/SAT-35989
https://issues.redhat.com/browse/SAT-35992
https://issues.redhat.com/browse/SAT-35994
https://issues.redhat.com/browse/SAT-35996
https://issues.redhat.com/browse/SAT-36007
https://issues.redhat.com/browse/SAT-36015
https://issues.redhat.com/browse/SAT-36022
https://issues.redhat.com/browse/SAT-36023
https://issues.redhat.com/browse/SAT-36030
https://issues.redhat.com/browse/SAT-31979
https://issues.redhat.com/browse/SAT-31997
https://issues.redhat.com/browse/SAT-32223
https://issues.redhat.com/browse/SAT-32437
https://issues.redhat.com/browse/SAT-32464
https://issues.redhat.com/browse/SAT-32471
https://issues.redhat.com/browse/SAT-32491
https://issues.redhat.com/browse/SAT-32561
https://issues.redhat.com/browse/SAT-32574
https://issues.redhat.com/browse/SAT-32611
https://issues.redhat.com/browse/SAT-32615
https://issues.redhat.com/browse/SAT-32622
https://issues.redhat.com/browse/SAT-32667
https://issues.redhat.com/browse/SAT-32697
https://issues.redhat.com/browse/SAT-32710
https://issues.redhat.com/browse/SAT-32715
https://issues.redhat.com/browse/SAT-33154
https://issues.redhat.com/browse/SAT-33189
https://issues.redhat.com/browse/SAT-33242
https://issues.redhat.com/browse/SAT-33243
https://issues.redhat.com/browse/SAT-33248
https://issues.redhat.com/browse/SAT-33254
https://issues.redhat.com/browse/SAT-33255
插件详情
严重性: High
ID: 272301
文件名: redhat-RHSA-2025-19721.nasl
版本: 1.1
类型: local
代理: unix
发布时间: 2025/11/5
最近更新时间: 2025/11/5
支持的传感器: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
风险信息
VPR
风险因素: High
分数: 8.1
Vendor
Vendor Severity: Important
CVSS v2
风险因素: Medium
基本分数: 6.8
时间分数: 5
矢量: CVSS2#AV:N/AC:H/Au:M/C:C/I:C/A:C
CVSS 分数来源: CVE-2025-10622
CVSS v3
风险因素: High
基本分数: 8
时间分数: 7
矢量: CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
时间矢量: CVSS:3.0/E:U/RL:O/RC:C
漏洞信息
CPE: p-cpe:/a:redhat:enterprise_linux:foreman, p-cpe:/a:redhat:enterprise_linux:foreman-journald, p-cpe:/a:redhat:enterprise_linux:foreman-openstack, p-cpe:/a:redhat:enterprise_linux:foreman-postgresql, p-cpe:/a:redhat:enterprise_linux:foreman-pcp, p-cpe:/a:redhat:enterprise_linux:foreman-ec2, p-cpe:/a:redhat:enterprise_linux:foreman-redis, p-cpe:/a:redhat:enterprise_linux:foreman-debug, cpe:/o:redhat:enterprise_linux:9, p-cpe:/a:redhat:enterprise_linux:foreman-cli, p-cpe:/a:redhat:enterprise_linux:foreman-telemetry, p-cpe:/a:redhat:enterprise_linux:foreman-service, p-cpe:/a:redhat:enterprise_linux:foreman-vmware, p-cpe:/a:redhat:enterprise_linux:foreman-libvirt, p-cpe:/a:redhat:enterprise_linux:foreman-dynflow-sidekiq
必需的 KB 项: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
易利用性: No known exploits are available
补丁发布日期: 2025/11/4
漏洞发布日期: 2025/11/4
参考资料信息
CVE: CVE-2025-10622
CWE: 602
RHSA: 2025:19721