Theforeman Foreman
43 CVEs affecting Theforeman Foreman. Latest disclosed: 2019-08-01. Critical: 0, High: 6.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-7505 | High | 8.8 | 2017-05-26 | Foreman since version 1.5 is vulnerable to an incorrect authorization check due to which users with user management permission who are assigned to some organiz… |
CVE-2016-4475 | High | 8.8 | 2016-08-19 | The (1) Organization and (2) Locations APIs and UIs in Foreman before 1.11.4 and 1.12.x before 1.12.0-RC3 allow remote authenticated users to bypass organizati… |
CVE-2016-3728 | High | 8.8 | 2016-05-20 | Eval injection vulnerability in tftp_api.rb in the TFTP module in the Smart-Proxy in Foreman before 1.10.4 and 1.11.x before 1.11.2 allows remote attackers to… |
CVE-2015-5246 | High | 8.1 | 2017-10-06 | The LDAP Authentication functionality in Foreman might allow remote attackers with knowledge of old passwords to gain access via vectors involving the password… |
CVE-2015-5152 | High | 8.1 | 2017-07-17 | Foreman after 1.1 and before 1.9.0-RC1 does not redirect HTTP requests to HTTPS when the require_ssl setting is set to true, which allows remote attackers to o… |
CVE-2014-8183 | High | 7.4 | 2019-08-01 | It was found that foreman, versions 1.x.x before 1.15.6, in Satellite 6 did not properly enforce access controls on certain resources. An attacker with access… |
CVE-2017-15100 | Medium | 6.1 | 2017-11-27 | An attacker submitting facts to the Foreman server containing HTML can cause a stored XSS on certain pages: (1) Facts page, when clicking on the "chart" button… |
CVE-2015-5282 | Medium | 6.1 | 2017-09-25 | Cross-site scripting (XSS) vulnerability in Foreman 1.7.0 and after. |
CVE-2016-6319 | Medium | 6.1 | 2016-08-19 | Cross-site scripting (XSS) vulnerability in app/helpers/form_helper.rb in Foreman before 1.12.2, as used by Remote Execution and possibly other plugins, allows… |
CVE-2014-3531 | Medium | 5.4 | 2017-10-18 | Multiple cross-site scripting (XSS) vulnerabilities in Foreman before 1.5.2 allow remote authenticated users to inject arbitrary web script or HTML via the ope… |
CVE-2014-0208 | Medium | 5.4 | 2017-10-16 | Cross-site scripting (XSS) vulnerability in the search auto-completion functionality in Foreman before 1.4.4 allows remote authenticated users to inject arbitr… |
CVE-2016-6320 | Medium | 5.4 | 2016-08-19 | Cross-site scripting (XSS) vulnerability in app/assets/javascripts/host_edit_interfaces.js in Foreman before 1.12.2 allows remote authenticated users to inject… |
CVE-2016-2100 | Medium | 5.4 | 2016-05-20 | Foreman before 1.10.3 and 1.11.0 before 1.11.0-RC2 allow remote authenticated users to read, modify, or delete private bookmarks by leveraging the (1) edit_boo… |
CVE-2016-5390 | Medium | 5.3 | 2016-08-19 | Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the view_hosts permission containing a filter to obtain sensitive network… |
CVE-2016-4995 | Medium | 5.3 | 2016-08-19 | Foreman before 1.11.4 and 1.12.x before 1.12.1 does not properly restrict access to preview provisioning templates, which allows remote authenticated users wit… |
CVE-2016-4451 | Medium | 5.0 | 2016-08-19 | The (1) Organization and (2) Locations APIs in Foreman before 1.11.3 and 1.12.x before 1.12.0-RC1 allow remote authenticated users with unlimited filters to by… |
CVE-2015-5233 | Medium | 4.2 | 2016-04-11 | Foreman before 1.8.4 and 1.9.x before 1.9.1 do not properly apply view_hosts permissions, which allows (1) remote authenticated users with the view_reports per… |
CVE-2015-7518 | | 2015-12-17 | Multiple cross-site scripting (XSS) vulnerabilities in information popups in Foreman before 1.10.0 allow remote attackers to inject arbitrary web script or HTM… | |
CVE-2015-3235 | | 2015-08-14 | Foreman before 1.9.0 allows remote authenticated users with the edit_users permission to edit administrator users and change their passwords via unspecified ve… | |
CVE-2015-3155 | | 2015-08-14 | Foreman before 1.8.1 does not set the secure flag for the _session_id cookie in an https session, which makes it easier for remote attackers to capture this co… |