Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2016:1634
HistoryAug 18, 2016 - 5:25 p.m.

(RHSA-2016:1634) Important: CFME 5.6.1 security, bug fix, and enhancement update

2016-08-1817:25:56
access.redhat.com
12

0.005 Low

EPSS

Percentile

77.4%

JSON

Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.

Security Fix(es):

  • It was found that the CloudForms web UI did not properly filter input in certain fields. A remote, authenticated attacker could use this flaw to execute arbitrary code on the system running CloudForms. (CVE-2016-5383)

This issue was discovered by Eric Hayes (Red Hat).

Additional Changes:

This update also fixes several bugs and adds various enhancements.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64cfme-debuginfo< 5.6.1.2-1.el7cfcfme-debuginfo-5.6.1.2-1.el7cf.x86_64.rpm
RedHat7x86_64google-config< 2.0.0-1.el7cfgoogle-config-2.0.0-1.el7cf.x86_64.rpm
RedHat7x86_64cfme-appliance< 5.6.1.2-1.el7cfcfme-appliance-5.6.1.2-1.el7cf.x86_64.rpm
RedHat7x86_64cfme< 5.6.1.2-1.el7cfcfme-5.6.1.2-1.el7cf.x86_64.rpm
RedHat7srccfme< 5.6.1.2-1.el7cfcfme-5.6.1.2-1.el7cf.src.rpm
RedHat7srccfme-appliance< 5.6.1.2-1.el7cfcfme-appliance-5.6.1.2-1.el7cf.src.rpm
RedHat7x86_64cfme-appliance-debuginfo< 5.6.1.2-1.el7cfcfme-appliance-debuginfo-5.6.1.2-1.el7cf.x86_64.rpm
RedHat7x86_64cfme-gemset< 5.6.1.2-1.el7cfcfme-gemset-5.6.1.2-1.el7cf.x86_64.rpm
RedHat7noarchgoogle-compute-engine< 2.0.0-1.el7cfgoogle-compute-engine-2.0.0-1.el7cf.noarch.rpm
RedHat7srcgoogle-config< 2.0.0-1.el7cfgoogle-config-2.0.0-1.el7cf.src.rpm
Rows per page:
1-10 of 121

Related

veracode 1
nvd 1
redhatcve 1
cve 1
prion 1
cvelist 1
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:13:04
nvd
nvd
CVE-2016-5383
2016-08-26 14:59:02
redhatcve
redhatcve
CVE-2016-5383
2016-08-18 21:04:52
cve
cve
CVE-2016-5383
2016-08-26 14:59:02
prion
prion
Code injection
2016-08-26 14:59:00
cvelist
cvelist
CVE-2016-5383
2016-08-26 14:00:00

0.005 Low

EPSS

Percentile

77.4%

JSON
Related for RHSA-2016:1634
veracode1nvd1redhatcve1cve1prion1cvelist1