Cloudforms Management Engine@5.1 Security Vulnerabilities and Issues — Cloudforms Management Engine@5.1 CVE List

Lucene search

RedhatCloudforms Management Engine5.1

3 matches found

CVE•added 2013/08/23 4:55 p.m.•49 views

CVE-2013-4172

The Red Hat CloudForms Management Engine 5.1 allow remote administrators to execute arbitrary Ruby code via unspecified vectors.

8.5CVSS7.8AI score0.00673EPSS

CVE•added 2014/01/11 1:55 a.m.•45 views

CVE-2013-2050

SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine (CFME) 5.1 and ManageIQ Enterprise Virtualization Manager 5.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the profile[] parameter in an explorer action.

7.5CVSS8.2AI score0.39953EPSS

CVE•added 2013/09/28 7:55 p.m.•43 views

CVE-2013-2068

Multiple directory traversal vulnerabilities in the AgentController in Red Hat CloudForms Management Engine 2.0 allow remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the filename parameter to the (1) log, (2) upload, or (3) linuxpkgs method.

9.4CVSS7.1AI score0.75269EPSS