CVE-2016-4995

MEDIUM

Foreman 1.11.0-1.11.3 - Authenticated Exposure of Sensitive Information via Provisioning Template Preview

Title source: llm
STIX 2.1

Description

Foreman before 1.11.4 and 1.12.x before 1.12.1 does not properly restrict access to preview provisioning templates, which allows remote authenticated users with permission to view some hosts to obtain sensitive host configuration information via a URL with a hostname.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
https://theforeman.org/security.html#2016-4995
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0336
Patch, Vendor Advisory x_refsource_confirm
http://projects.theforeman.org/issues/15490

Scores

CVSS v3 5.3
EPSS 0.0108
EPSS Percentile 61.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (1)
theforeman/foreman 1.11.0 - 1.11.4
Published Aug 19, 2016
Tracked Since Feb 18, 2026