Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-20259

Опубликовано: 07 июн. 2021
Источник: nvd
CVSS3: 7.8
CVSS2: 4.6
EPSS Низкий

Описание

A flaw was found in the Foreman project. The Proxmox compute resource exposes the password through the API to an authenticated local attacker with view_hosts permission. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Versions before foreman_fog_proxmox 0.13.1 are affected

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:theforeman:foremanfogproxmox:*:*:*:*:*:*:*:*
Версия до 0.13.1 (исключая)

EPSS

Процентиль: 30%
0.00114
Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

redhat логотип

CVE-2021-20259

CVSS3: 6.3
redhat
почти 5 лет назад

A flaw was found in the Foreman project. The Proxmox compute resource exposes the password through the API to an authenticated local attacker with view_hosts permission. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Versions before foreman_fog_proxmox 0.13.1 are affected

debian логотип

CVE-2021-20259

CVSS3: 7.8
debian
больше 4 лет назад

A flaw was found in the Foreman project. The Proxmox compute resource ...

github логотип

GHSA-f2rp-4rv7-fc95

CVSS3: 7.8
github
больше 4 лет назад

Exposure of Sensitive Information to an Unauthorized Actor in foreman_fog_proxmox

EPSS

Процентиль: 30%
0.00114
Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-200