Lucene search
K

4 matches found

NVD
NVD
added 2018/07/27 3:29 p.m.40 views

CVE-2017-7497

The dialog for creating cloud volumes cinder provider in CloudForms does not filter cloud tenants by user. An attacker with the ability to create storage volumes could use this to create storage volumes for any other tenant...

4.3CVSS4.3AI score0.00991EPSS
Exploits0References3
CVE
CVE
added 2018/07/27 3:0 p.m.100 views

CVE-2017-7497

CVE-2017-7497 affects Red Hat CloudForms (CloudForms Management Engine) where the dialog for creating cloud volumes (cinder provider) fails to filter cloud tenants by user. The underlying issue allows an attacker who can create storage volumes to allocate volumes for other tenants, enabling unaut...

4.3CVSS4.5AI score0.00991EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2017/06/28 2:51 p.m.36 views

Important: Red Hat Security Advisory: CFME 5.7.3 security, bug fix and enhancement update

Updates for cfme, cfme-appliance, cfme-gemset, rh-ruby23-rubygem-nokogiri, and rh-ruby23-rubygem-ovirt-engine-sdk4 are now available for CloudForms Management Engine 5.7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System...

7.5CVSS6.1AI score0.01334EPSS
Exploits0References158
RedhatCVE
RedhatCVE
added 2017/05/11 4:49 p.m.34 views

CVE-2017-7497

The dialog for creating cloud volumes cinder provider in CloudForms does not filter cloud tenants by user. An attacker with the ability to create storage volumes could use this to create storage volumes for any other tenant...

4.3CVSS2.8AI score0.00991EPSS
Exploits0References1
Rows per page
Query Builder