OS Command Injection

2019-01-1508:54:13

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.037 Low

EPSS

Percentile

91.9%

JSON

foreman-proxy is vulnerable to OS command injection. The path parameter to tftp/fetch_boot_file in the TFTP module is not validated and verified, which would allow a remote attacker to inject arbitrary OS commands on the system to be executed in the context of the foreman-proxy process worker.

CPENameOperatorVersion
foreman-proxyeq1.3.0__3.el6sat
foreman-proxyeq1.3.0__5.el6sat
foreman-proxyeq1.6.0.8__1.el6sat
ruby193-foreman-proxyeq1.1.10001__3.el6ost
ruby193-foreman-proxyeq1.1.10001__4.el6ost
hibernate-beanvalidation-apieq1.0.0__1.7.GA_redhat_1.ep6.el6
python-amqpeq1.0.13__1.el6ost
python-amqpeq1.3.3__1.el6
python-amqpeq1.0.13__1.el7ost
ruby193-rubygem-trollopeq1.16.2__2.el6cf

Name	Operator	Version
foreman-proxy	eq	1.3.0__3.el6sat
foreman-proxy	eq	1.3.0__5.el6sat
foreman-proxy	eq	1.6.0.8__1.el6sat
ruby193-foreman-proxy	eq	1.1.10001__3.el6ost
ruby193-foreman-proxy	eq	1.1.10001__4.el6ost
hibernate-beanvalidation-api	eq	1.0.0__1.7.GA_redhat_1.ep6.el6
python-amqp	eq	1.0.13__1.el6ost
python-amqp	eq	1.3.3__1.el6
python-amqp	eq	1.0.13__1.el7ost
ruby193-rubygem-trollop	eq	1.16.2__2.el6cf