CVE-2019-3893 — Incorrect Permission Assignment in Foreman

CWE-732 — Incorrect Permission Assignment5 documents5 sources

Severity

4.9MEDIUMNVD

EPSS

0.4%

top 40.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Theforeman Foreman THE Foreman Project Foreman Redhat Satellite

Timeline

PublishedApr 9

Latest updateMay 13

Description

In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext password or token for the affected compute resource. A malicious user with the "delete_compute_resource" permission can use this flaw to take control over compute resources managed by foreman. Versions before 1.20.3, 1.21.1, 1.22.0 are vulnerable.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 1.2 | Impact: 3.6

Affected Packages3 packages

▶NVDtheforeman/foreman1.20.0 — 1.20.3+1

▶CVEListV5the_foreman_project/foreman1.20.3, 1.21.1, 1.22.0+2

▶NVDredhat/satellite6.0

🔴Vulnerability Details

GHSA

GHSA-xfjc-qf4h-hwgq: In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext↗2022-05-13

▶

CVEList

CVE-2019-3893: In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext↗2019-04-09

▶

📋Vendor Advisories

Red Hat

foreman: Recover of plaintext password or token for the compute resources↗2019-04-09

▶

💬Community

Bugzilla

CVE-2019-3893 foreman: Recover of plaintext password or token for the compute resources↗2019-04-04

▶