Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.27 views

RHEL 7 : Red Hat CloudForms (RHSA-2017:3005)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3005 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual...

9CVSS8.2AI score0.87544EPSS
Exploits10References165
OSV
OSV
added 2018/07/27 4:29 p.m.31 views

CVE-2017-12148

A flaw was found in Ansible Tower's interface before 3.1.5 and 3.2.0 with SCM repositories. If a Tower project SCM repository definition does not have the 'delete before update' flag set, an attacker with commit access to the upstream playbook source repository could create a Trojan playbook that...

7.2CVSS7.3AI score0.01707EPSS
Exploits0References2
NVD
NVD
added 2018/07/27 4:29 p.m.39 views

CVE-2017-12148

A flaw was found in Ansible Tower's interface before 3.1.5 and 3.2.0 with SCM repositories. If a Tower project SCM repository definition does not have the 'delete before update' flag set, an attacker with commit access to the upstream playbook source repository could create a Trojan playbook that...

9CVSS8.6AI score0.01707EPSS
Exploits0References2
CVE
CVE
added 2018/07/27 4:0 p.m.84 views

CVE-2017-12148

CVE-2017-12148 affects Ansible Tower's UI (SCM repos). If a Tower project definition lacks the 'delete before update' flag, a committer to the upstream playbook can insert a Trojan playbook that, when run by Tower, adds git hooks to the checked-out repository and may execute arbitrary commands as...

9CVSS7.2AI score0.01707EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2018/07/27 4:0 p.m.41 views

CVE-2017-12148

A flaw was found in Ansible Tower's interface before 3.1.5 and 3.2.0 with SCM repositories. If a Tower project SCM repository definition does not have the 'delete before update' flag set, an attacker with commit access to the upstream playbook source repository could create a Trojan playbook that...

8.4CVSS8.5AI score0.01707EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2017/10/24 12:15 a.m.89 views

Important: Red Hat Security Advisory: Red Hat CloudForms security, bug fix, and enhancement update

An update is now available for CloudForms Management Engine 5.8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9CVSS7.6AI score0.87544EPSS
Exploits10References162
RedhatCVE
RedhatCVE
added 2017/09/19 8:18 a.m.37 views

CVE-2017-12148

A flaw was found in Tower's interface with SCM repositories. If a Tower project SCM repository definition does not have the 'delete before update' flag set, an attacker with commit access to the upstream playbook source repository could create a Trojan playbook that, when executed by Tower,...

9CVSS2.1AI score0.01707EPSS
Exploits0References1
Rows per page
Query Builder