CVE-2015-5233 — Improper Access Control in Foreman

CWE-264 CWE-284 — Improper Access Control5 documents5 sources

Severity

4.2MEDIUMNVD

EPSS

0.2%

top 58.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Theforeman Foreman Redhat Satellite

Timeline

PublishedApr 11

Latest updateMay 17

Description

Foreman before 1.8.4 and 1.9.x before 1.9.1 do not properly apply view_hosts permissions, which allows (1) remote authenticated users with the view_reports permission to read reports from arbitrary hosts or (2) remote authenticated users with the destroy_reports permission to delete reports from arbitrary hosts via direct access to the (a) individual report show/delete pages or (b) APIs.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 1.6 | Impact: 2.5

Affected Packages2 packages

▶NVDtheforeman/foreman1.8.3+1

▶NVDredhat/satellite6.1

Patches

Patch: projects.theforeman.org ↗Patch: projects.theforeman.org ↗

🔴Vulnerability Details

GHSA

GHSA-m3c3-hv22-w332: Foreman before 1↗2022-05-17

▶

CVEList

CVE-2015-5233: Foreman before 1↗2016-04-11

▶

📋Vendor Advisories

Red Hat

foreman: reports show/destroy not restricted by host authorization↗2015-08-27

▶

💬Community

Bugzilla

CVE-2015-5233 foreman: reports show/destroy not restricted by host authorization↗2015-09-11

▶