CVE-2013-0187
published 2014-05-08CVE-2013-0187: Foreman before 1.1 allows remote authenticated users to gain privileges via a (1) XMLHttpRequest or (2) AJAX request.
PriorityP431medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
1.08%
60.9th percentile
Foreman before 1.1 allows remote authenticated users to gain privileges via a (1) XMLHttpRequest or (2) AJAX request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openstack | neutron | >= 0 < 1:2014.1-0ubuntu1.3 | 1:2014.1-0ubuntu1.3 |
| theforeman | foreman | <= 1.0 | — |
CVSS provenance
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
osv7.6HIGH
vendor_redhat9.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-32hv-jrcj-jr38: Foreman before 1
ghsa_unreviewed·2022-05-05
CVE-2013-0187 [MEDIUM] GHSA-32hv-jrcj-jr38: Foreman before 1
Foreman before 1.1 allows remote authenticated users to gain privileges via a (1) XMLHttpRequest or (2) AJAX request.
OSV
neutron vulnerabilities
osv·2014-06-25·CVSS 7.6
CVE-2013-6433 neutron vulnerabilities
neutron vulnerabilities
Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Neutron
did not properly set up its sudo configuration. If a different flaw was
found in OpenStack Neutron, this vulnerability could be used to escalate
privileges. (CVE-2013-6433)
Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in
OpenStack Neutron did not properly perform input validation when creating
security group rules when specifying --remote-ip-prefix. A remote
authenticated attacker could exploit this to prevent application of
additional rules. (CVE-2014-0187)
Thiago Martins discovered that OpenStack Neutron would inappropriately
apply SNAT rules to IPv6 subnets when using the L3-agent. A remote
authenticated attacker could exploit this to prevent floating IPv4
addre
Red Hat
openstack-neutron: security groups bypass through invalid CIDR
vendor_redhat·2014-04-22·CVSS 9.0
CVE-2014-0187 [CRITICAL] openstack-neutron: security groups bypass through invalid CIDR
openstack-neutron: security groups bypass through invalid CIDR
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
bugzilla·2014-04-22·CVSS 9.0
CVE-2014-0187 [CRITICAL] CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
OpenStack Security Advisory: 2014-014
CVE: CVE-2014-0187
Date: April 22, 2014
Title: Neutron security groups bypass through invalid CIDR
Reporters: Stephen Ma (HP) and Christoph Thiel (Deutsche Telekom)
Products: Neutron
Versions: 2013.1 to 2013.2.3, and 2014.1
Description:
Stephen Ma from Hewlett Packard and Christoph Thiel from Deutsche
Telekom reported a vulnerability in Neutron security groups. By creating
a security group rule with an invalid CIDR, an authenticated user may
break openvswitch-agent process, preventing further rules from being
applied on the host. Note: removal of the faulty rule is not enough, the
openvswitch-agent must be restarted. All Neutron setups using Open
vSwitch are affected.
Juno
Bugzilla
CVE-2012-5920 GWT: unknown XSS flaw
bugzilla·2012-10-31·CVSS 4.3
CVE-2012-5920 [MEDIUM] CVE-2012-5920 GWT: unknown XSS flaw
CVE-2012-5920 GWT: unknown XSS flaw
An unknown cross-site scripting (XSS) vulnerability has been resolved in Google Web Toolkit (GWT) 2.5. GWT 2.4 GA and the 2.5 RC builds are affected.
Discussion:
External Reference:
https://developers.google.com/web-toolkit/release-notes#Release_Notes_Current
---
This issue has been addressed in following products:
JBoss Operations Network 3.1.2
Via RHSA-2013:0187 https://rhn.redhat.com/errata/RHSA-2013-0187.html
2014-05-08
Published