Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-26791

Malware in sbrugna...

5.4CVSS5.5AI score0.00331EPSS
Exploits0References2
NVD
NVD
added 2021/06/03 8:15 p.m.12 views

CVE-2021-3469

Foreman versions before 2.3.4 and before 2.4.0 is affected by an improper authorization handling flaw. An authenticated attacker can impersonate the foreman-proxy if product enable the Puppet Certificate authority CA to sign certificate requests that have subject alternative names SANs. Foreman d...

5.4CVSS0.00331EPSS
Exploits0References1
OSV
OSV
added 2021/06/03 8:15 p.m.20 views

CVE-2021-3469

Foreman versions before 2.3.4 and before 2.4.0 is affected by an improper authorization handling flaw. An authenticated attacker can impersonate the foreman-proxy if product enable the Puppet Certificate authority CA to sign certificate requests that have subject alternative names SANs. Foreman d...

5.4CVSS6.5AI score
Exploits0References1
Prion
Prion
added 2021/06/03 8:15 p.m.14 views

Authorization

Foreman versions before 2.3.4 and before 2.4.0 is affected by an improper authorization handling flaw. An authenticated attacker can impersonate the foreman-proxy if product enable the Puppet Certificate authority CA to sign certificate requests that have subject alternative names SANs. Foreman d...

3.5CVSS5.3AI score0.00331EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/06/03 7:43 p.m.85 views

CVE-2021-3469

CVE-2021-3469 affects Foreman prior to 2.3.4 and prior to 2.4.0, due to an improper authorization handling flaw that lets an authenticated attacker impersonate the foreman-proxy when the Puppet CA is configured to sign certificate requests containing SANs. Foreman does not enable SANs by default,...

5.4CVSS5.3AI score0.00331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/03 7:43 p.m.22 views

CVE-2021-3469

Foreman versions before 2.3.4 and before 2.4.0 is affected by an improper authorization handling flaw. An authenticated attacker can impersonate the foreman-proxy if product enable the Puppet Certificate authority CA to sign certificate requests that have subject alternative names SANs. Foreman d...

5.5AI score0.00331EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/06/03 12:0 a.m.4 views

PT-2021-20648 · Foreman +1 · Foreman +1

Name of the Vulnerable Software and Affected Versions: Foreman versions prior to 2.3.4 Foreman versions prior to 2.4.0 Description: The issue is related to improper authorization handling. An authenticated attacker can exploit this to impersonate the foreman-proxy if the product is configured to...

9CVSS7.3AI score0.03885EPSS
Exploits0References9
Rows per page
Query Builder