CVE-2013-2113
Foreman (RedHat OpenStack/Satellite) - users/create Mass Assignment
Severity Score
6.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The create method in app/controllers/users_controller.rb in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create or edit other users to gain privileges by (1) changing the admin flag or (2) assigning an arbitrary role.
El método "create" en app/controllers/users_controller.rb en Foreman anterior a 1.2.0-RC2, permite a usuarios autenticados remotamente con permisos para crear o editar otros usuarios elevar sus privilegios mediante (1) modificando el flag de admin o (2) asignando un rol arbitrario.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-02-19 CVE Reserved
- 2013-06-27 CVE Published
- 2013-08-22 First Exploit
- 2024-08-06 CVE Updated
- 2024-10-24 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-264: Permissions, Privileges, and Access Controls
- CWE-285: Improper Authorization
- CWE-915: Improperly Controlled Modification of Dynamically-Determined Object Attributes
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://projects.theforeman.org/issues/2630 | X_refsource_confirm | |
| https://bugzilla.redhat.com/show_bug.cgi?id=968166 | X_refsource_confirm | |
| https://groups.google.com/forum/#%21topic/foreman-users/6WpO_3ugiXU | X_refsource_confirm | |
| https://projects.theforeman.org/issues/2630 |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/27776 | 2013-08-22 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2013-0995.html | 2023-02-13 | |
| https://access.redhat.com/security/cve/CVE-2013-2113 | 2013-06-27 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=966804 | 2013-06-06 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Openstack Search vendor "Redhat" for product "Openstack" | 3.0 Search vendor "Redhat" for product "Openstack" and version "3.0" | - |
Affected
| ||||||
| Theforeman Search vendor "Theforeman" | Foreman Search vendor "Theforeman" for product "Foreman" | <= 1.2.0 Search vendor "Theforeman" for product "Foreman" and version " <= 1.2.0" | rc1 |
Affected
| ||||||
| Theforeman Search vendor "Theforeman" | Foreman Search vendor "Theforeman" for product "Foreman" | 1.1 Search vendor "Theforeman" for product "Foreman" and version "1.1" | - |
Affected
| ||||||