CVE-2013-2050

Red Hat CloudForms 5.1 / ManageIQ <=5.0 SQL Injection via miq_policy Profile

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-2050. Includes Metasploit module auxiliary/admin/http/cfme_manageiq_evm_pass_reset.

AI-analyzed exploit summary This Metasploit module exploits a SQL injection vulnerability (CVE-2013-2050) in Red Hat CloudForms Management Engine 5.1 to reset the password of a target account. It supports both newer and older password schema versions.

Description

SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine (CFME) 5.1 and ManageIQ Enterprise Virtualization Manager 5.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the profile[] parameter in an explorer action.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/cfme_manageiq_evm_pass_reset.rb

View Code ZIP pw:eip

This Metasploit module exploits a SQL injection vulnerability (CVE-2013-2050) in Red Hat CloudForms Management Engine 5.1 to reset the password of a target account. It supports both newer and older password schema versions.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Red Hat CloudForms Management Engine 5.1 (ManageIQ Enterprise Virtualization Manager 5.0 and earlier)

Auth required

Prerequisites: Valid credentials for initial authentication · Network access to the target application

MITRE ATT&CK