Описание
An improper authorization flaw was found in the Smart Class feature of Foreman. An attacker can use it to change configuration of any host registered in Red Hat Satellite, independent of the organization the host belongs to. This flaw affects all Red Hat Satellite 6 versions.
Ссылки
- Third Party Advisory
- Issue TrackingVendor Advisory
- Third Party Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
EPSS
6.8 Medium
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
Связанные уязвимости
An improper authorization flaw was found in the Smart Class feature of Foreman. An attacker can use it to change configuration of any host registered in Red Hat Satellite, independent of the organization the host belongs to. This flaw affects all Red Hat Satellite 6 versions.
An improper authorization flaw was found in the Smart Class feature of ...
An improper authorization flaw was found in the Smart Class feature of Foreman. An attacker can use it to change configuration of any host registered in Red Hat Satellite, independent of the organization the host belongs to. This flaw affects all Red Hat Satellite 6 versions.
Уязвимость реализации класса Smart Class программного средства для управления системами Red Hat Satellite и приложения для управления, настройки и мониторинга сервера Foreman, позволяющая нарушителю изменить конфигурационные файлы
EPSS
6.8 Medium
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2