CVE-2016-4995
MEDIUMForeman 1.11.0-1.11.3 - Authenticated Exposure of Sensitive Information via Provisioning Template Preview
Title source: llmDescription
Foreman before 1.11.4 and 1.12.x before 1.12.1 does not properly restrict access to preview provisioning templates, which allows remote authenticated users with permission to view some hosts to obtain sensitive host configuration information via a URL with a hostname.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
https://theforeman.org/security.html#2016-4995
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0336
Patch, Vendor Advisory x_refsource_confirm
http://projects.theforeman.org/issues/15490
Patch, Vendor Advisory x_refsource_confirm
http://projects.theforeman.org/projects/foreman/repository/revisions/c3c186de12be15e55d9582e54659f765304a1073
Scores
CVSS v3
5.3
EPSS
0.0108
EPSS Percentile
61.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
theforeman/foreman
1.11.0 - 1.11.4
Published
Aug 19, 2016
Tracked Since
Feb 18, 2026