8.2 High
AI Score
Confidence
Low
0.037 Low
EPSS
Percentile
91.9%
The Smart-Proxy in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter to tftp/fetch_boot_file.
projects.theforeman.org/issues/6086
rhn.redhat.com/errata/RHSA-2014-0770.html