exploitDog

CVE-2014-0057

Опубликовано: 11 мар. 2014

Источник: redhat

CVSS2: 6.5

EPSS Низкий

Описание

The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors.

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-470

https://bugzilla.redhat.com/show_bug.cgi?id=1064140CFME: Dangerous send in ServiceController

EPSS

Процентиль: 72%

0.00703

Низкий

6.5 Medium

CVSS2

Связанные уязвимости

CVE-2014-0057

nvd

почти 12 лет назад

The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors.

GHSA-6m4c-55qp-f477

github

больше 3 лет назад

The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors.

EPSS

Процентиль: 72%

0.00703

Низкий

6.5 Medium

CVSS2