CVE-2018-14664
published 2018-10-12CVE-2018-14664: A flaw was found in foreman from versions 1.18. A stored cross-site scripting vulnerability exists due to an improperly escaped HTML code in the breadcrumbs…
PriorityP424medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
EPSS
1.07%
60.7th percentile
A flaw was found in foreman from versions 1.18. A stored cross-site scripting vulnerability exists due to an improperly escaped HTML code in the breadcrumbs bar. This allows a user with permissions to edit which attribute is used in the breadcrumbs bar to store code that will be executed on the client side.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| theforeman | foreman | — | — |
CVSS provenance
nvdv3.05.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
vendor_redhat5.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
foreman: Persisted XSS on all pages that use breadcrumbs
vendor_redhat·2018-10-10·CVSS 5.4
CVE-2018-14664 [MEDIUM] CWE-79 foreman: Persisted XSS on all pages that use breadcrumbs
foreman: Persisted XSS on all pages that use breadcrumbs
A flaw was found in foreman from versions 1.18. A stored cross-site scripting vulnerability exists due to an improperly escaped HTML code in the breadcrumbs bar. This allows a user with permissions to edit which attribute is used in the breadcrumbs bar to store code that will be executed on the client side.
A cross-site scripting (XSS) flaw was found in the foreman component of satellite. An attacker with privilege to create entries using the Hosts, Monitor, Infrastructure, or Administer Menus is able to execute a XSS attacks against other users, possibly leading to malicious code execution and extraction of the anti-CSRF token of higher privileged users.
GHSA
GHSA-5xq8-2vfq-6q92: A flaw was found in foreman from versions 1
ghsa_unreviewed·2022-05-14
CVE-2018-14664 [MEDIUM] CWE-79 GHSA-5xq8-2vfq-6q92: A flaw was found in foreman from versions 1
A flaw was found in foreman from versions 1.18. A stored cross-site scripting vulnerability exists due to an improperly escaped HTML code in the breadcrumbs bar. This allows a user with permissions to edit which attribute is used in the breadcrumbs bar to store code that will be executed on the client side.
No detection rules found.
No public exploits indexed.
http://www.securityfocus.com/bid/106553https://access.redhat.com/errata/RHSA-2019:1222https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14664https://projects.theforeman.org/issues/25169http://www.securityfocus.com/bid/106553https://access.redhat.com/errata/RHSA-2019:1222https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14664https://projects.theforeman.org/issues/25169
2018-10-12
Published