Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2016/11/29 12:0 a.m.20 views

Foreman 1.10.x < 1.11.4, 1.12.0 Information Disclosure Vulnerability

Foreman is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:theforeman:foreman";...

5.3CVSS5.2AI score0.01309EPSS
Exploits0References1
OSV
OSV
added 2016/08/19 9:59 p.m.6 views

CVE-2016-5390

Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the viewhosts permission containing a filter to obtain sensitive network interface information via a request to API routes beneath "hosts," as demonstrated by a GET request to api/v2/hosts/secrethost/interfaces...

5.3CVSS4.9AI score
Exploits0References4
NVD
NVD
added 2016/08/19 9:59 p.m.21 views

CVE-2016-5390

Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the viewhosts permission containing a filter to obtain sensitive network interface information via a request to API routes beneath "hosts," as demonstrated by a GET request to api/v2/hosts/secrethost/interfaces...

5.3CVSS4.9AI score0.01309EPSS
Exploits0References4
CVE
CVE
added 2016/08/19 9:0 p.m.48 views

CVE-2016-5390

CVE-2016-5390 affects Foreman before 1.11.4 and 1.12.x before 1.12.1. The issue allows remote authenticated users with the view_hosts permission to exploit an information-disclosure flaw via API routes under hosts (e.g., api/v2/hosts/secrethost/interfaces) to obtain sensitive network interface in...

5.3CVSS4.8AI score0.01309EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder