Lucene search

[email protected]CVE-2016-8613

HistoryJul 31, 2018 - 8:29 p.m.

CVE-2016-8613

2018-07-3120:29:00

CWE-79

[email protected]

web.nvd.nist.gov

foreman

1.5.1

remote execution

ssh

xss vulnerability

nvd

6.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

71.0%

JSON

A flaw was found in foreman 1.5.1. The remote execution plugin runs commands on hosts over SSH from the Foreman web UI. When a job is submitted that contains HTML tags, the console output shown in the web UI does not escape the output causing any HTML or JavaScript to run in the user’s browser. The output of the job is stored, making this a stored XSS vulnerability.

Affected configurations

Vulners

NVD

Node

the_foreman_projectforemanRange≤1.5.1

CPENameOperatorVersion
theforeman:foremantheforeman foremaneq1.5.1

CPE	Name	Operator	Version
theforeman:foreman	theforeman foreman	eq	1.5.1

CNA Affected

[
  {
    "product": "foreman",
    "vendor": "The Foreman Project",
    "versions": [
      {
        "status": "affected",
        "version": "1.5.1"
      }
    ]
  }
]