CVE-2016-4451
published 2016-08-19CVE-2016-4451: The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to…
PriorityP429medium5CVSS 3.0
AVNACHPRLUINSUCLILAL
EPSS
0.93%
56.2th percentile
The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to bypass organization and location restrictions and read or modify data for an arbitrary organization by leveraging knowledge of the id of that organization.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| theforeman | foreman | <= 1.11.2 | — |
| theforeman | foreman | — | — |
CVSS provenance
nvdv3.05.0MEDIUMCVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
nvdv2.06.0MEDIUMAV:N/AC:M/Au:S/C:P/I:P/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
foreman: privilege escalation through Organization and Locations API
vendor_redhat·2016-05-25·CVSS 5.0
CVE-2016-4451 [MEDIUM] CWE-284 foreman: privilege escalation through Organization and Locations API
foreman: privilege escalation through Organization and Locations API
The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to bypass organization and location restrictions and read or modify data for an arbitrary organization by leveraging knowledge of the id of that organization.
It was found that Satellite 6 did not properly enforce access controls on certain resources. An attacker, with access to the API and knowledge of the ID name, can potentially access other resources in other organizations.
Package: foreman (OpenStack Foreman) - Will not fix
Package: foreman (Red Hat Ceph Storage 1.3) - Will not fix
Package: foreman (Red Hat Enterprise Linux OpenStack Platform 6 (Juno) Installer
GHSA
GHSA-jh5m-3mwm-hr2m: The (1) Organization and (2) Locations APIs in Foreman before 1
ghsa_unreviewed·2022-05-14
CVE-2016-4451 [MEDIUM] GHSA-jh5m-3mwm-hr2m: The (1) Organization and (2) Locations APIs in Foreman before 1
The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to bypass organization and location restrictions and read or modify data for an arbitrary organization by leveraging knowledge of the id of that organization.
No detection rules found.
No public exploits indexed.
http://projects.theforeman.org/issues/15182http://projects.theforeman.org/projects/foreman/repository/revisions/1144040f444b4bf4aae81940a150b26b23b4623chttps://access.redhat.com/errata/RHSA-2018:0336https://theforeman.org/security.html#2016-4451http://projects.theforeman.org/issues/15182http://projects.theforeman.org/projects/foreman/repository/revisions/1144040f444b4bf4aae81940a150b26b23b4623chttps://access.redhat.com/errata/RHSA-2018:0336https://theforeman.org/security.html#2016-4451
2016-08-19
Published