CVE-2015-5233

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 27-08-2015 02:00

Last modified: - 27-08-2015 02:00

Total changes: - 64

Description

CVE-2015-5233 foreman: reports show/destroy not restricted by host authorization

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:S/C:P/I:N/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

None

Integrity

-

Privileges required

-

Scope

-

User interaction

5.5

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=foreman-0 AND versionEndExcluding=1.7.2.49-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=foreman-discovery-image-0 AND versionEndExcluding=3.0.5-3

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=foreman-proxy-0 AND versionEndExcluding=1.7.2.7-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=gofer-0 AND versionEndExcluding=2.6.8-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=katello-agent-0 AND versionEndExcluding=2.2.6-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=katello-installer-base-0 AND versionEndExcluding=2.3.22-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=python-nectar-0 AND versionEndExcluding=1.3.4-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=python-qpid-0 AND versionEndExcluding=0.30-7.el7

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=qpid-dispatch-0 AND versionEndExcluding=0.4-11.el7

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=qpid-proton-0 AND versionEndExcluding=0.9-11.el7

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-foreman_bootdisk-0 AND versionEndExcluding=4.0.2.14-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-foreman_discovery-0 AND versionEndExcluding=2.0.0.23-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-foreman-redhat_access-0 AND versionEndExcluding=0.2.4-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-katello-0 AND versionEndExcluding=2.2.0.77-1.el6_6sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=ruby193-rubygem-redhat_access_lib-0 AND versionEndExcluding=0.0.6-1.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=rubygem-hammer_cli_foreman_docker-0 AND versionEndExcluding=0.0.3.10-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=rubygem-newt-0 AND versionEndExcluding=0.9.6-1.el6

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=rubygem-smart_proxy_discovery-0 AND versionEndExcluding=1.0.3-2.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=rubygem-smart_proxy_discovery_image-0 AND versionEndExcluding=1.0.5-3.el7sat

vendor=Red Hat Enterprise Linux AND product=satellite_capsule AND version=6.1

AND

product=foreman AND version=

vendor=Red Hat Enterprise Linux AND product=openstack-installer AND version=5

AND

product=foreman AND version=

vendor=Red Hat Enterprise Linux AND product=openstack-installer AND version=6

Reference

Keywords

REDHAT

CVE-2015-5233

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.