CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2014-0140 – CFME: default routes expose controllers and actions
https://notcve.org/view.php?id=CVE-2014-0140
Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request. Red Hat CloudForms 3.1 Management Engine (CFME) anterior a 5.3 permite a usuarios remotos autenticados acceder a controladores y acciones sensibles a través de una solicitud HTTP o HTTPS directa. It was found that Red Hat CloudForms exposed default routes that were reachable via HTTP(S) requests. An authenticated user could use this flaw to access potentially sensitive controllers and actions that would allow for privilege escalation. • http://rhn.redhat.com/errata/RHSA-2014-1317.html https://bugzilla.redhat.com/show_bug.cgi?id=1077359 https://access.redhat.com/security/cve/CVE-2014-0140 • CWE-264: Permissions, Privileges, and Access Controls CWE-749: Exposed Dangerous Method or Function •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2014-3642 – CFME: dangerous send method in performance.rb
https://notcve.org/view.php?id=CVE-2014-3642
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method." vmdb/app/controllers/application_controller/performance.rb en Red Hat CloudForms 3.1 Management Engine (CFME) anterior a 5.3 permite a usuarios remotos autenticados ganar privilegios a través de vectores no especificados, relacionado con un 'método de envió inseguro.' It was found that Red Hat CloudForms contained an insecure send method that accepted user-supplied arguments. An authenticated user could use this flaw to modify the program flow in a way that could result in privilege escalation. • http://rhn.redhat.com/errata/RHSA-2014-1317.html https://bugzilla.redhat.com/show_bug.cgi?id=1092894 https://access.redhat.com/security/cve/CVE-2014-3642 • CWE-264: Permissions, Privileges, and Access Controls CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') •