Remote Code Execution
Red Hat CloudForms is vulnerable to remote code execution. This is because the dialog for creating cloud volumes cinder provider in CloudForms does not filter cloud tenants by user. An attacker with the ability to create storage volumes could use this to create storage volumes for any other tenan...