CVE-2016-4471

CWE-2645 documents5 sources
Severity
8.8HIGH
EPSS
1.5%
top 18.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Cloudforms
Timeline
PublishedJun 8
Latest updateMay 17

Description

ManageIQ in CloudForms before 4.1 allows remote authenticated users to execute arbitrary code.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-7j8r-jxrx-cf98: ManageIQ in CloudForms before 42022-05-17
CVEList
CVE-2016-4471: ManageIQ in CloudForms before 42017-06-08

📋Vendor Advisories

1
Red Hat
cfme: Privilege escalation causing arbitrary code execution2016-08-12

💬Community

1
Bugzilla
CVE-2016-4471 cfme: Privilege escalation causing arbitrary code execution2016-05-30
CVE-2016-4471 (HIGH CVSS 8.8) | ManageIQ in CloudForms before 4.1 a | cvebase.io