CVE-2012-5604
Red Hat CloudForms 1.1 - Unauthenticated Authentication Bypass via LDAP Fluff Gem
Title source: llmDescription
The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when using Active Directory for authentication, allows remote attackers to bypass authentication via unspecified vectors.
References (2)
Core 2
Core References
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=882136
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0544.html
Scores
EPSS
0.0018
EPSS Percentile
39.2%
Details
CWE
CWE-264
Status
published
Products (2)
redhat/cloudforms
1.1
rubygems/ldap_fluff
0 - 0.4.0RubyGems
Published
Mar 01, 2013
Tracked Since
Feb 18, 2026