CVE-2017-7505
CVE-2017-7505 applies to Foreman (since v1.5): an incorrect authorization check lets users with the user management permission, when assigned to an organization, perform any operation allowed by that permission on administrator user objects outside their scope, including editing global admin acco...