CVE-2016-4995
foreman: Information disclosure in provisioning template previews
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Foreman before 1.11.4 and 1.12.x before 1.12.1 does not properly restrict access to preview provisioning templates, which allows remote authenticated users with permission to view some hosts to obtain sensitive host configuration information via a URL with a hostname.
Foreman en versiones anteriores a 1.11.4 y 1.12.x en versiones anteriores a 1.12.1 no restringe correctamente el acceso para previsualizar las plantillas de provisionamiento, lo que permite a usuarios remotos autenticados con permisos para ver algunos anfitriones obtener información de configuración de anfitrión sensible a través de una URL con un nombre de anfitrión.
A flaw was found in foreman's handling of template previews. An attacker with permissions to preview host templates can access the template preview for any host if they are able to guess the host name, disclosing potentially sensitive information.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-05-24 CVE Reserved
- 2016-08-19 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (6)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://projects.theforeman.org/issues/15490 | 2023-02-12 | |
http://projects.theforeman.org/projects/foreman/repository/revisions/c3c186de12be15e55d9582e54659f765304a1073 | 2023-02-12 |
URL | Date | SRC |
---|---|---|
https://access.redhat.com/errata/RHSA-2018:0336 | 2023-02-12 | |
https://theforeman.org/security.html#2016-4995 | 2023-02-12 | |
https://access.redhat.com/security/cve/CVE-2016-4995 | 2018-02-21 | |
https://bugzilla.redhat.com/show_bug.cgi?id=1348939 | 2018-02-21 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Theforeman Search vendor "Theforeman" | Foreman Search vendor "Theforeman" for product "Foreman" | >= 1.11.0 < 1.11.4 Search vendor "Theforeman" for product "Foreman" and version " >= 1.11.0 < 1.11.4" | - |
Affected
| ||||||
Theforeman Search vendor "Theforeman" | Foreman Search vendor "Theforeman" for product "Foreman" | >= 1.12.0 < 1.12.1 Search vendor "Theforeman" for product "Foreman" and version " >= 1.12.0 < 1.12.1" | - |
Affected
|