Redhat Cloudforms 3.0.3 Management Engine vulnerabilities
2 known vulnerabilities affecting redhat/cloudforms_3.0.3_management_engine.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2014-0140MEDIUMCVSS 4.0v5.2.32014-10-06
CVE-2014-0140 [MEDIUM] CWE-264 CVE-2014-0140: Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to acce
Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.
nvd
CVE-2014-3642MEDIUMCVSS 6.5v5.2.32014-10-06
CVE-2014-3642 [MEDIUM] CWE-264 CVE-2014-3642: vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engi
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method."
nvd