Lucene search
HistorySep 16, 2013 - 7:14 p.m.
CVE-2013-4180
cve-2013-4180
foreman
hostcontroller
denial of service
memory consumption
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.9 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
83.2%
The (1) power and (2) ipmi_boot actions in the HostController in Foreman before 1.2.2 allow remote attackers to cause a denial of service (memory consumption) via unspecified input that is converted to a symbol.
Affected configurations
Node
redhatopenstackMatch3.0
Node
theforemanforemanRange≤1.2.1
ORtheforemanforemanMatch1.2.0
ORtheforemanforemanMatch1.2.0rc1
ORtheforemanforemanMatch1.2.0rc2
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:openstack | redhat openstack | eq | 3.0 |
Related
cvelist
cvelist
CVE-2013-4180
2013-09-16 19:00:00
ubuntucve
ubuntucve
CVE-2013-4180
2013-09-16 00:00:00
nvd
nvd
CVE-2013-4180
2013-09-16 19:14:38
prion
prion
Code injection
2013-09-16 19:14:00
redhat
redhat
(RHSA-2013:1196) Important: Foreman security update
2013-09-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.9 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
83.2%
Related for CVE-2013-4180