RCE in Redhat Cloudforms_management_engine

CVE-2013-4172

The Red Hat CloudForms Management Engine 5.1 allow remote administrators to execute arbitrary Ruby code via unspecified vectors.

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.006 (68.6th percentile) — read the EPSS interpretation.

Affected products

Redhat Cloudforms_management_engine — versions 5.1
N/a — versions n/a

Weakness classification (CWE)

CWE-94 — Code Injection

References

RHSA-2013:1157 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)