CVE-2017-7535

CWE-79 — Cross-site Scripting (XSS)5 documents5 sources

Severity

6.1MEDIUM

EPSS

0.5%

top 33.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Theforeman Foreman Foreman Foreman

Timeline

PublishedJul 26

Latest updateMay 13

Description

foreman before version 1.16.0 is vulnerable to a stored XSS in organizations/locations assignment to hosts. Exploiting this requires a user to actively assign hosts to an organization that contains html in its name which is visible to the user prior to taking action.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages2 packages

▶NVDtheforeman/foreman< 1.16.0

▶CVEListV5foreman/foreman1.16.0

Patches

Patch: seclists.org ↗Patch: seclists.org ↗

🔴Vulnerability Details

GHSA

GHSA-4w27-xxvw-958c: foreman before version 1↗2022-05-13

▶

CVEList

CVE-2017-7535: foreman before version 1↗2018-07-26

▶

📋Vendor Advisories

Red Hat

foreman: XSS in the manage organization page↗2017-07-12

▶

💬Community

Bugzilla

CVE-2017-7535 foreman: XSS in the manage organization page↗2017-06-20

▶