CVE-2016-4451 — Improper Access Control in Foreman

CWE-254 CWE-284 — Improper Access Control5 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.1%

top 65.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Theforeman Foreman

Timeline

PublishedAug 19

Latest updateMay 14

Description

The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to bypass organization and location restrictions and read or modify data for an arbitrary organization by leveraging knowledge of the id of that organization.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.6 | Impact: 3.4

Affected Packages1 packages

▶NVDtheforeman/foreman1.11.2+1

Patches

Patch: projects.theforeman.org ↗Patch: projects.theforeman.org ↗

🔴Vulnerability Details

GHSA

GHSA-jh5m-3mwm-hr2m: The (1) Organization and (2) Locations APIs in Foreman before 1↗2022-05-14

▶

CVEList

CVE-2016-4451: The (1) Organization and (2) Locations APIs in Foreman before 1↗2016-08-19

▶

📋Vendor Advisories

Red Hat

foreman: privilege escalation through Organization and Locations API↗2016-05-25

▶

💬Community

Bugzilla

CVE-2016-4451 foreman: privilege escalation through Organization and Locations API↗2016-05-26

▶