Lucene search
+L

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26816

Malware in sbrugna...

5.9CVSS6.5AI score0.00369EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/11/16 3:43 p.m.4 views

foreman: possible man-in-the-middle in smart_proxy realm_freeipa

A smart proxy that provides a restful API to various sub-systems of the Foreman is affected by the flaw which can cause a Man-in-the-Middle attack. The FreeIPA module of Foreman smart proxy does not check the SSL certificate, thus, an unauthenticated attacker can perform actions in FreeIPA if...

5.9CVSS5.8AI score0.00369EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/04/26 3:15 p.m.5 views

CVE-2021-3494

A smart proxy that provides a restful API to various sub-systems of the Foreman is affected by the flaw which can cause a Man-in-the-Middle attack. The FreeIPA module of Foreman smart proxy does not check the SSL certificate, thus, an unauthenticated attacker can perform actions in FreeIPA if...

5.9CVSS6.7AI score0.00369EPSS
Exploits0References2
Prion
Prion
added 2021/04/26 3:15 p.m.15 views

Design/Logic Flaw

A smart proxy that provides a restful API to various sub-systems of the Foreman is affected by the flaw which can cause a Man-in-the-Middle attack. The FreeIPA module of Foreman smart proxy does not check the SSL certificate, thus, an unauthenticated attacker can perform actions in FreeIPA if...

4.3CVSS5.8AI score0.00369EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/04/26 12:0 a.m.6 views

PT-2021-20784 · Foreman +1 · Foreman +1

Name of the Vulnerable Software and Affected Versions: Foreman versions prior to 2.5.0 Description: A flaw in the smart proxy of Foreman, which provides a restful API to various sub-systems, can cause a Man-in-the-Middle attack. The FreeIPA module of Foreman smart proxy does not check the SSL...

9CVSS7.5AI score0.03885EPSS
Exploits0References11
Rows per page
Query Builder