4 matches found
Foreman 1.10.x < 1.11.4, 1.12.0 Information Disclosure Vulnerability
Foreman is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:theforeman:foreman";...
CVE-2016-5390
Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the viewhosts permission containing a filter to obtain sensitive network interface information via a request to API routes beneath "hosts," as demonstrated by a GET request to api/v2/hosts/secrethost/interfaces...
CVE-2016-5390
Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the viewhosts permission containing a filter to obtain sensitive network interface information via a request to API routes beneath "hosts," as demonstrated by a GET request to api/v2/hosts/secrethost/interfaces...
CVE-2016-5390
CVE-2016-5390 affects Foreman before 1.11.4 and 1.12.x before 1.12.1. The issue allows remote authenticated users with the view_hosts permission to exploit an information-disclosure flaw via API routes under hosts (e.g., api/v2/hosts/secrethost/interfaces) to obtain sensitive network interface in...